A while ago I encountered a bug within Viewfinity 5.5 (5.5.10.95). Viewfinity is a product owned by CyberArk that provides Endpoint Privilege Management. It bolsters administrator's ability to control user privileges on corporate desktops. Below is a use case in which I was able to elevate privileges from a normal user to Admin through this product.
Step 1: Verify you are a low privilege user by running the command "net session". Net session displays information about all sessions within the local computer. The user will get Access is denied if they do not have Administrator privileges.
Review - GIAC Exploit Researcher and Advanced Penetration Tester (GXPN) Review
A few weeks ago I passed the GIAC Exploit Researcher and Advanced Penetration Tester (GXPN) certification exam. This is the exam offered after their SEC660: Advanced Penetration Testing, Exploit Writing, and Ethical Hacking course. Below is my review.
RickdiculouslyEasy: 1 - Walkthrough
It has been a long time since I've last posted anything off of Vulnhub. To be honest, I just haven't had too much time to dive into any of these VM's. However, g0tmi1k released a ton of new VM's so I wanted to check them out. One of which is was RickdiculouslyEasy: 1 made by Luke.
This VM is based off the tv show Rick and Morty. I, myself, am a fan of this show so I had to check it out. It turned out to be quite easy but I still had fun solving it. Below is my walkthrough on capturing all of the flags.
Elevate from Admin to NT Authority\SYSTEM
Elevate from Admin to NT Authority\SYSTEM
The other day I gained Administrative access to a windows machine. While I was enumerating around, I had the urge to escalate to the most powerful account on a Windows local instance: NT Authority\SYSTEM.
64Base - Walkthrough
It's been a while since I've been able to work on a vulnhub image. I started looking at recent releases and came across 64base. This VM has a Star Wars theme which is always great. Plus, it was 3mrgnc3's first public VM so I had to check it out!