9 Privilege Escalation

The previous chapters have explained the process of performing an attack to a point where the attacker can compromise a system. The previous chapter, Chapter 8, Lateral Movement, discussed how an attacker can move around in the compromised system without being identified or raising any alarms. A general trend was observable, where legitimate tools were being used to avoid security alerts. A similar trend may also be observed in this phase of the attack life cycle.

In this chapter, close attention will be paid to how attackers heighten the privileges of the user accounts that they have compromised. The aim of an attacker at this stage is to have obtained the required level of privileges in order to achieve a greater objective. ...

Get Cybersecurity – Attack and Defense Strategies - Second Edition now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

Cybersecurity – Attack and Defense Strategies - Second Edition by Yuri Diogenes, Erdal Ozkaya

9

Privilege Escalation

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly