search
Infiltr8ForumGitHub
githubEdit

Insecure Services

MITRE ATT&CK™ Hijack Execution Flow - Technique T1574

hashtag
Theory

One of the basic features of Microsoft Windows is the ability to run services. These are background processes, similar to Unix deamons. They are managed by the Service Control Managerarrow-up-right. If they are misconfigured, as they usually run as a local system account, they can lead to privilege escalation.

hashtag
Practice

hashtag
Enumerate

Processes & Serviceschevron-right

hashtag
Exploit

Weak Service Permissionschevron-rightWeak File/Folder Permissionschevron-rightWeak Registry Permissionschevron-rightUnquoted Service Pathchevron-right

Last updated