From SQL to SYSTEM: Registry Looting and Privilege Escalation via MSSQL

Attack Scenario Introduction In Windows, every process runs under a security token that represents the user’s identity and privileges. These tokens can be abused if the process has the SeImpersonat...

Jul 2, 2025 MSSQL, Privilege Escalation, Registry Looting, JuicyPotato

Breaking Windows - Bypassing AppLocker When PowerShell and CMD Are Locked Down

The Scenario: In this scenario, we have access to a Windows 10 host where an AppLocker policy is enforced, explicitly blocking access to cmd.exe, powershell.exe, and powershell_ise.exe for a specif...

Mar 28, 2025 AppLocker Bypass, Windows Breakout

Ret2Lib Stack Overflow Exploit Walkthrough

Introduction In a stack-based buffer overflow, attackers typically inject shellcode into the stack and execute it by overwriting the return address. However, modern systems enforce NX (No eXecute)...

Mar 3, 2025 Stack Overflow, libc, ret2lib, exploit

Deploying Game Of Active Directory On VMWare ESXI

Introduction to the GOAD Lab Setup The Game of Active Directory (GOAD) lab is a purpose-built environment for Active Directory security testing. This guide walks you through setting up GOAD on VMw...

Feb 24, 2025 Lab Environment, GOAD

From SQL to SYSTEM: Registry Looting and Privilege Escalation via MSSQL

Breaking Windows - Bypassing AppLocker When PowerShell and CMD Are Locked Down

Ret2Lib Stack Overflow Exploit Walkthrough

Deploying Game Of Active Directory On VMWare ESXI

Trending Tags