THREATOPS
THREAT OPSThreat News › Beyond ACLs: Mapping Windows Privilege Escalation Paths with BloodHound

Beyond ACLs: Mapping Windows Privilege Escalation Paths with BloodHound

lowsynacktiv

Windows privileges are special rights that grant processes the ability to perform sensitive operations. Some privileges allow bypassing standard Access Control List (ACL) checks, which can lead to significant security implications.

While privileges like SeDebugPrivilege, SeImpersonatePrivilege or SeBackupPrivilege are frequently used by attackers to escalate their privileges, it is also possible

Original source: https://www.synacktiv.com/en/publications/beyond-acls-mapping-windows-privilege-escalation-paths-with-bloodhound.html