DamianGrace.com

Behind the scenes

Posts Tagged ‘Domain’

Windows Privilege Escalation Techniques

October 22nd, 2009

During one of my tours through the deep dark net this afternoon, I stumbled across a couple of very interesting blog posts by Scott Sutherland at NetSPI.com. Scott explains 10 different ways to move in Windows from Standard User to Local Administrator and then from Local Administrator to Domain Admin. Interesting stuff, and well worth the read.

Local Administrator Privilege Escalation Techniques

Domain Admin Privilege Escalation Techniques

No comments »

Posted in Windows

Tags: admin Administrator Domain Escalation Local pass the hash Privilege Standard User

- Subscribe Subscribe to my blogs feed
Who is Damian Grace?
- Damian has over five years experience working as a security consultant. During that time he has provided security advice to some of Australia's largest organizations including Local and State Government facilities, Banks and Telecommunications providers.
  
  He has a passion for learning and constant improvement. This becomes evident when looking at the his list of achievements which includes a Diploma in Network Engineering, Certified Information Systems Security Professional (CISSP), GIAC Certified Penetration Tester (GPEN), GIAC Certified Forensic Analyst (GCFA), GIAC Systems and Network Auditor (GSNA), GIAC Security Essentials Certification (GSEC), Offensive-Security - Pentesting with Backtrack (OSCP) and most recently the GIAC Web Application Penetration Tester (GWAPT) certification.
  
  Damian is also a member of Australian Information Security Association (AISA) and part of the GIAC Advisory Board.
Twitter: damiangrace
- Nice little vid demonstrating the new phishing attack I tweeted about yesterday - http://bit.ly/bnZaen 04:16:56 AM May 26, 2010 from web
- This one skipped under my radar - The guys at metasploit have released a hackable VM called metersploitable - http://bit.ly/8XxaLl 03:25:33 AM May 26, 2010 from web
- New phishing attack vector - http://bit.ly/d6b0y2 <- Very Clever 07:03:16 AM May 25, 2010 from web
- Google Web App Security Course - http://bit.ly/adoqYl <-- All Web Devs should do this! 12:29:12 AM May 05, 2010 from web
Categories
Sites I Read

Back to Top

Valid XHTML 1.0 Transitional | Valid CSS 3