Hot Potato – Windows Privilege Escalation Hot Potato (aka: Potato) takes advantage of known issues in Windows to gain local privilege escalation in default configurations, namely NTLM relay (specifically HTTP->SMB relay) and NBNS spoofing. If this sounds vaguely familiar, it’s because a similar technique was disclosed by the guys at Google Project Zero . In fact, some of our code was shamelessly borrowed from their PoC and expanded upon. Using this technique, we can elevate our privilege on a Windows…
Weekend tech reading: "Hot potato" allows Windows privilege escalation, spotting fake Amazon reviews
No comments:
Post a Comment