ioc[.]one - OSINT Cyber Threat Intelligence Database

Privileges Escalation Techniques (Basic to Advanced) for Windows

Tags

attack-pattern:

Installer Packages - T1546.016 Powershell - T1059.001 Server - T1583.004 Server - T1584.004 Software - T1592.002 Windows Service - T1543.003 Powershell - T1086

Show in Graph

Common Information

Type	Value
UUID	87f2cbb5-91fd-43cc-86e8-344c3877d095
Fingerprint	342b3150f52765e7
Analysis status	DONE
Considered CTI value	0
Text language
Published	May 21, 2023, 12:49 p.m.
Added to db	May 25, 2023, 1:55 a.m.
Last updated	Nov. 2, 2024, 1:09 a.m.
Headline	Privileges Escalation Techniques (Basic to Advanced) for Windows
Title	Privileges Escalation Techniques (Basic to Advanced) for Windows
Detected Hints/Tags/Attributes	31/1/12

Source URLs

	Redirection	Url
Details	Source	https://infosecwriteups.com/privileges-escalation-techniques-basic-to-advanced-for-windows-245f5e0e733b?gi=64b029989863&source=rss----7b722bfd1b8d---4
Details	Source	https://infosecwriteups.com/privileges-escalation-techniques-basic-to-advanced-for-windows-245f5e0e733b?gi=6c201b9b7868&source=rss----7b722bfd1b8d---4
Details	Redirection	https://infosecwriteups.com/privileges-escalation-techniques-basic-to-advanced-for-windows-245f5e0e733b?gi=74ce3704bbda&source=rss----7b722bfd1b8d---4
Details	Redirection	https://infosecwriteups.com/privileges-escalation-techniques-basic-to-advanced-for-windows-245f5e0e733b?gi=84a47322f9a5&source=rss----7b722bfd1b8d---4
Details	Redirection	https://infosecwriteups.com/privileges-escalation-techniques-basic-to-advanced-for-windows-245f5e0e733b?gi=8c89b7450a22&source=rss----7b722bfd1b8d---4
Details	Source	https://infosecwriteups.com/privileges-escalation-techniques-basic-to-advanced-for-windows-245f5e0e733b?gi=94cc060daa66&source=rss----7b722bfd1b8d---4
Details	Redirection	https://infosecwriteups.com/privileges-escalation-techniques-basic-to-advanced-for-windows-245f5e0e733b?gi=d87a5495eca8&source=rss----7b722bfd1b8d---4
Details	Source	https://infosecwriteups.com/privileges-escalation-techniques-basic-to-advanced-for-windows-245f5e0e733b?gi=dfa3e9897c1b&source=rss----7b722bfd1b8d---4
Details	Redirection	https://infosecwriteups.com/privileges-escalation-techniques-basic-to-advanced-for-windows-245f5e0e733b?source=rss----7b722bfd1b8d---4
Details	Redirection	https://medium.com/m/global-identity-2?redirectUrl=https%3A%2F%2Finfosecwriteups.com%2Fprivileges-escalation-techniques-basic-to-advanced-for-windows-245f5e0e733b%3Fsource%3Drss----7b722bfd1b8d---4

URL Provider

Details	Provider	Source level domain
Details	infosecwriteups.com	infosecwriteups.com
Details	medium.com	medium.com

RSS Feed

Details	Id	Enabled	Feed title	Url	Added to db
Details	136	✔	InfoSec Write-ups - Medium	https://infosecwriteups.com/feed	2024-08-30 22:08

Attributes

Details	Type	#Events	CTI	Value
Details	File	1		c:\program files\script dir\service.exe
Details	File	9		c:\program.exe
Details	File	1		c:\program files\script.exe
Details	File	3		common.exe
Details	File	1		c:\program files\unquoted path service\common files\unquotedpathservice.exe
Details	File	1		c:\program files\unquoted.exe
Details	File	1		c:\program files\unquoted path.exe
Details	File	1		c:\program files\unquoted path service\common.exe
Details	File	14		powerup.ps1
Details	Windows Registry Key	4		HKCU\SOFTWARE\Policies\Microsoft\Windows\Installer
Details	Windows Registry Key	4		HKLM\SOFTWARE\Policies\Microsoft\Windows\Installer
Details	Windows Registry Key	33		HKLM\SYSTEM\CurrentControlSet\Services