Security Memo

Search (Ctrl+K)

❯

❯

❯

Tag: sec/windows

Tag: sec/windows

50 items with this tag.

Jan 08, 2024
Cobalt Strike UAC bypass
Jan 08, 2024
Cobalt Strike elevated persistence via WMI events
- ttp/04-persistence
- sec/windows
Jan 08, 2024
Cobalt Strike elevated persistence via service creation
Jan 08, 2024
Cobalt Strike persistence through COM hijacking
- sec/windows
- ttp/04-persistence
Jan 08, 2024
Cobalt Strike persistence through registry autorun
- sec/windows
- ttp/04-persistence
Jan 08, 2024
Cobalt Strike persistence via startup folder
- sec/windows
- ttp/04-persistence
Jan 08, 2024
Cobalt Strike persistence via task scheduler
- sec/windows
- ttp/04-persistence
Jan 08, 2024
Distributed Component Object Model
Jan 08, 2024
HTTP tunneling through deep packet inspection
Jan 08, 2024
IPv4-to-IPv4 proxy via netsh
Jan 08, 2024
IPv6 DNS spoofing
Jan 08, 2024
JuicyPotato
Jan 08, 2024
Microsoft Office macro attack
Jan 08, 2024
Object Linking and Embedding
Jan 08, 2024
PrintNightmare
Jan 08, 2024
PsExec
Jan 08, 2024
RCE via log file poisoning
Jan 08, 2024
RDP hijacking
Jan 08, 2024
S4U2Self abuse
Jan 08, 2024
UAC Bypass via fodhelper.exe
Jan 08, 2024
UAC bypass
Jan 08, 2024
URL file attack
Jan 08, 2024
WMI
- sec/windows
- concept
Jan 08, 2024
Windows Remote Management (WinRM)
- sec/windows
- ttp/09-lateral-movement
Jan 08, 2024
Windows enumeration
- ttp/08-discovery
- sec/windows
Jan 08, 2024
Windows local service enumeration
- sec/windows
- ttp/08-discovery
Jan 08, 2024
dump and crack domain cached credentials
Jan 08, 2024
golden ticket
Jan 08, 2024
lateral movement via DCOM
Jan 08, 2024
netsh
- sec/tool
- sec/windows/cmd
Jan 08, 2024
overpass-the-hash
Jan 08, 2024
pass-the-hash
Jan 08, 2024
pass-the-key
Jan 08, 2024
pass-the-ticket
Jan 08, 2024
print spool exploit
Jan 08, 2024
registry autorun via GPO
Jan 08, 2024
remote MSI package installation via WMI
Jan 08, 2024
remote process creation via WMI
Jan 08, 2024
remote scheduled task creation via WMI
Jan 08, 2024
remote scheduled task creation via schtask
Jan 08, 2024
remote service creation via WMI
Jan 08, 2024
remote service creation via sc.exe
Jan 08, 2024
resource-based constrained delegation
Jan 08, 2024
runas.exe
Jan 08, 2024
scheduled task credential
Jan 08, 2024
secretsdump
Jan 08, 2024
shadow credentials attack
Jan 08, 2024
unquoted service path
Jan 08, 2024
weak service binary permissions
Jan 08, 2024
weak service permissions

Created with Quartz v4.2.3 © 2024

GitHub
LinkedIn
HackTheBox