Privilege Escalation with PEASS-NG
|
Adversaries frequently use unprivileged access to enter and browse a network, but they need privileged access to complete their tasks. In this course, you will learn privilege escalation using the PEASS-NG suite.
Manually looking for privilege escalation paths can become a timely activity. Sometimes you may miss misconfigurations that are easily exploitable and at times you may not be looking at all possibilities. In this course, Privilege Escalation with PEASS-NG, you’ll cover how to utilize WinPEAS and LinPEAS to execute privilege escalation in a red team environment. First, you’ll explore using LinPEAS to discover excessive permissions related to SETUID/SETGID. Next, you’ll apply WinPEAS to discover dll’s that can be exploited. Finally, you’ll simulate the task of finding valuable registry keys which enable you to install services with elevated permissions. When you’re finished with this course, you’ll have the skills and knowledge to execute these techniques [T1548.001, T1055.001, T1547.001] using the PEASS-NG suite. More importantly, knowing how these techniques can be used against you, will ultimately lend to your ability as an organization, or an individual, to detect and defend against specific attack vectors.
Author Name: Rishalin Pillay
Author Description:
Rishalin is a prolific author and cybersecurity expert. He has authored several video courses on Pluralsight, as well as three books: “Learn Penetration Testing”, “Offensive Shellcode from Scratch.” and “Ethical Hacking Workshop”. He is also a technical contributor to many other books on topics such as dark web analysis, Kali Linux, offensive security, and SECOPS. He has received the Microsoft Content Publisher Gold and Platinum awards for his contributions to the cybersecurity industry. Rishal… more
User Reviews
Be the first to review “Privilege Escalation with PEASS-NG”
Related Products
Metasploit: Getting Started
Penetration testing is an exciting way to blend an attacker mindset with the tools needed to identify security problems. This course will teach you the basics of the Metasploit Framework to test and exploit vulnerable systems.
Scan Web Applications with Bash
Enumerating web applications is the first step of a web application penetration testing. This course will teach you how to enumerate and find vulnerabilities in web applications using Bash.
Web Application Penetration Testing with Burp Suite
Want to learn how to use Burp beyond just the capture of requests and responses? This course helps get you up and running quickly to take advantage of all the functionality in the Burp Suite.
Digital Forensics: The Big Picture
Digital devices are everywhere, along with digital crime and the corresponding evidence. This course will teach you all about this field and give you the foundational knowledge needed to make informed decisions about your digital future.
Active Defense with PowerShell
Attackers are constantly trying to get on your system, in your networks, and around your data. This course will teach you a few functions and scripts that can be utilized to proactively defend a system on a network.
Social Engineering: Executive Briefing
Social engineering poses a potential threat to not only employees at an organization, but also directly to company executives. In this executive briefing, we will look at understand what social engineering and how you can protect yourself from it.
There are no reviews yet.