Escalating Privileges via Third-Party Windows Installers


Picture this: you’ve finally made it past the perimeter of a highly secured organization. You’re feeling pretty pleased with yourself, until you realize you only have Active Directory privileges of a newly hired intern and the thrill trickles away. However, with some crafty tricks and a bit of luck, you just might be able to climb the corporate ladder and get promoted to SYSTEM.

Welcome to the high-stakes game of privilege escalation! For red teamers, elevation of privilege attacks come in two forms: domain and local privilege escalation.

Read more…
Source: Mandiant