Exploiting AlwaysInstallElevated for Windows Privilege Escalation
A walkthrough of exploiting the AlwaysInstallElevated misconfiguration on Windows to escalate from user to SYSTEM using a malicious MSI payload.
Recent Posts
Devel Rooted: A Hack The Box Walkthrough
This post is a walkthrough of the ‘Devel’ retired machine from Hack The Box. I gain initial access through an exposed FTP and WebDAV setup, then escalate pri...
LazyAdmin TryHackMe Walkthrough
A complete walkthrough of the LazyAdmin room on TryHackMe, demonstrating enumeration, exploitation, and privilege escalation.
Anonymous Rooted: A TryHackMe Walkthrough
This walkthrough covers the TryHackMe ‘Anonymous’ room. I gain user-level access via FTP and a writable script, capture the user flag, and escalate to root v...
Compromising the Dev Box: A PNPT Walkthrough with Mitigation and MITRE ATT&CK Mapping
A step-by-step walkthrough of compromising the Dev Box from TCM Security’s PNPT training course, including detailed explanations, mitigation steps, and a com...
