<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Windows on Notes by Nisha</title><link>https://notesbynisha.com/tags/windows/</link><description>Recent content in Windows on Notes by Nisha</description><generator>Hugo</generator><language>en</language><copyright>&amp;copy; 2026 Nisha</copyright><lastBuildDate>Tue, 06 May 2025 00:00:00 +0000</lastBuildDate><atom:link href="https://notesbynisha.com/tags/windows/index.xml" rel="self" type="application/rss+xml"/><item><title>Exploiting AlwaysInstallElevated for Windows Privilege Escalation</title><link>https://notesbynisha.com/posts/2025-05-06-alwaysinstallelevated-walkthrough/</link><pubDate>Tue, 06 May 2025 00:00:00 +0000</pubDate><guid>https://notesbynisha.com/posts/2025-05-06-alwaysinstallelevated-walkthrough/</guid><description>A walkthrough of exploiting the AlwaysInstallElevated misconfiguration on Windows to escalate from user to SYSTEM using a malicious MSI payload.</description></item><item><title>Devel Rooted: A Hack The Box Walkthrough</title><link>https://notesbynisha.com/posts/2025-04-22-devel-rooted-walkthrough/</link><pubDate>Tue, 22 Apr 2025 00:00:00 +0000</pubDate><guid>https://notesbynisha.com/posts/2025-04-22-devel-rooted-walkthrough/</guid><description>This post is a walkthrough of the &amp;lsquo;Devel&amp;rsquo; retired machine from Hack The Box. I gain initial access through an exposed FTP and WebDAV setup, then escalate privileges using MS15-051.</description></item><item><title>TryHackMe Ice - Walkthrough by Nisha</title><link>https://notesbynisha.com/posts/2024-06-04-ice-tryhackme-walkthrough/</link><pubDate>Tue, 04 Jun 2024 00:00:00 +0000</pubDate><guid>https://notesbynisha.com/posts/2024-06-04-ice-tryhackme-walkthrough/</guid><description>&lt;h5>Deploy &amp; hack into a Windows machine, exploiting a very poorly secured media server. &lt;/h5>
&lt;img src="https://notesbynisha.com/assets/images/thm/thm-ice-1.png">
&lt;p>&lt;strong> Room Link: &lt;/strong> &lt;a href="https://tryhackme.com/r/room/ice"> &lt;a href="https://tryhackme.com/r/room/ice" target="_blank" rel="noreferrer">https://tryhackme.com/r/room/ice&lt;/a>&lt;/a>&lt;/p>
&lt;h2 id="task-1---connect" class="relative group">Task 1 - Connect &lt;span class="absolute top-0 w-6 transition-opacity opacity-0 -start-6 not-prose group-hover:opacity-100">&lt;a class="group-hover:text-primary-300 dark:group-hover:text-neutral-700" style="text-decoration-line: none !important;" href="#task-1---connect" aria-label="Anchor">#&lt;/a>&lt;/span>&lt;/h2>&lt;p>Get connected to the TryHackMe network using OpenVPN. Make sure to first download your configuration file from &lt;a href="http://tryhackme.com/access ">your access page. &lt;/a>&lt;/p></description></item><item><title>Windows Event Logs (TryHackMe Walkthrough)</title><link>https://notesbynisha.com/posts/2023-12-24-windows-event-logs-thm/</link><pubDate>Sun, 24 Dec 2023 00:00:00 +0000</pubDate><guid>https://notesbynisha.com/posts/2023-12-24-windows-event-logs-thm/</guid><description>&lt;h3 id="introduction-to-windows-event-logs-and-the-tools-to-query-them" class="relative group">Introduction to Windows Event Logs and the tools to query them. &lt;span class="absolute top-0 w-6 transition-opacity opacity-0 -start-6 not-prose group-hover:opacity-100">&lt;a class="group-hover:text-primary-300 dark:group-hover:text-neutral-700" style="text-decoration-line: none !important;" href="#introduction-to-windows-event-logs-and-the-tools-to-query-them" aria-label="Anchor">#&lt;/a>&lt;/span>&lt;/h3>&lt;p>&lt;strong> Room Link: &lt;/strong> &lt;a href="https://tryhackme.com/r/room/windowseventlogs" target="_blank" rel="noopener noreferrer"> &lt;a href="https://tryhackme.com/r/room/windowseventlogs" target="_blank" rel="noreferrer">https://tryhackme.com/r/room/windowseventlogs&lt;/a>&lt;/a>&lt;/p></description></item></channel></rss>