windows exploitation

  1. x32x01

    Windows Privilege Escalation: HiveNightmare

    Introduction CVE-2021-36934 also known as SeriousSAM and HiveNightmare vulnerability was discovered by Jonas Lykkegaard in July 2021. Due to an ACL misconfiguration in Windows 10 post-build 1809 and Windows 11, non-admin users are granted read access to the holy trio of SAM, SYSTEM and SECURITY...
  2. x32x01

    Msfvenom Cheatsheet: Windows Exploitation

    In this post, you will learn how to use MsfVenom to generate all types of payloads for exploiting the windows platform. Read beginner guide from here Table of Content Requirements MsfVenom Syntax Payload and its types Executable Payload (exe) Powershell Batch File HTML Application Payload...
  3. x32x01

    Armitage - In-depth Windows Exploitation (GUI)

    It’s difficult to talk about any system in a vacuum, especially a system that is so widely deployed in so many roles as Windows in all of its flavors. To see how easily tools like Metasploit Framework can remotely exploit Windows vulnerability, we’ll use the GUI version of Metasploit Framework...