Uploaded byjospinjj
54 views

PENETRATION TESTING PRIVILEGE ESCALATION.ppt

Privilege escalation attacks allow threat actors to gain unauthorized access to systems and elevate their permissions. These attacks typically aim to compromise powerful user accounts through exploiting vulnerabilities in access controls or software bugs. Attackers first gain initial access, then look for ways to bypass account authorization and elevate their privileges, with the goal of obtaining unlimited administrator access. Common methods involve taking advantage of weak security on lower-level accounts or finding flaws in how access is managed.

Embed presentation

Download to read offline
SRM Institute of Science and Technology 1 Dr.J.Jospin Jeya Assistant Professor SRMIST Privilege Escalation
Privilege Escalation •A Privilege Escalation Attack is a technique in which a threat actor gains unauthorized access through a susceptible point and then elevates access permissions to carry out a full-blown attack. •Such threat actors can be external hackers or insiders who exploit vulnerabilities such as inadequate or broken access controls or system bugs to compromise a user account •. Privilege escalation attacks typically aim to gain a powerful level of permission and control the entire system.
•In the case of horizontal privilege escalation, the actor takes advantage of lower-level or unprivileged user accounts with weak security policies. •Vertical Privilege Escalation •Also known as Privilege Elevation refers to an attack where the attacker elevates access privileges beyond defined account permissions. •Such attack vectors typically start with the goal of gaining accounts with unlimited administrator privileges, such as System Administrator on Windows or root access on Linux/Unix machines Privilege Escalation Types
attack vendors include Web Application Servers and Application Programming Interfaces. •To gain initial access, attackers authenticate themselves to the system by bypassing user account control or obtaining credentials. •Beyond this, attackers try to find various loopholes in account authorization to gain a level of access to more sensitive data. How Does Privilege Escalation Work

More Related Content

PPTX
Privilege Escalation in Ethical Hacking.pptx
byGuna Dhondwad
 
PPTX
Privilege Escalation Techniques: Exploiting System Vulnerabilities for Elevat...
byBert Blevins
 
PPTX
Escalate Privileges in Windows: Addressing a Critical Security Vulnerability
byBert Blevins
 
PPTX
Privilege Escalation in Windows : Privileged Access Management
byBert Blevins
 
PPTX
Privilege Escalation Management: Controlling Unauthorized Access Elevation
byBert Blevins
 
PDF
External Attacks Against Privileged Accounts - How Federal Agencies Can Build...
byBeyondTrust
 
PPTX
External Attacks Against Pivileged Accounts
byLindsay Marsh
 
PDF
10 Steps to Better Windows Privileged Access Management
byBeyondTrust
 
Privilege Escalation in Ethical Hacking.pptx
byGuna Dhondwad
 
Privilege Escalation Techniques: Exploiting System Vulnerabilities for Elevat...
byBert Blevins
 
Escalate Privileges in Windows: Addressing a Critical Security Vulnerability
byBert Blevins
 
Privilege Escalation in Windows : Privileged Access Management
byBert Blevins
 
Privilege Escalation Management: Controlling Unauthorized Access Elevation
byBert Blevins
 
External Attacks Against Privileged Accounts - How Federal Agencies Can Build...
byBeyondTrust
 
External Attacks Against Pivileged Accounts
byLindsay Marsh
 
10 Steps to Better Windows Privileged Access Management
byBeyondTrust
 

Similar to PENETRATION TESTING PRIVILEGE ESCALATION.ppt

PPT
PENTRATION TESTING Linux Escalation.ppt
byjospinjj
 
PPTX
Windows Privilege Escalation Techniques.pptx
bypentest716
 
PPTX
Your Service Desk is Privileged, Too
byBomgar
 
PDF
Untitled document.pdf
bygoogle
 
PDF
Annual OktCyberfest 2019
byFahad Al-Hasan
 
PDF
Revisiting Privileged Access in Today's Threat Landscape
byLance Peterman
 
PDF
The Risks of Horizontal Privilege Escalation.pdf
byuzair
 
PPTX
Exploring the Depths of Privileged Access Management
byBert Blevins
 
PPTX
Windows Client Privilege Escalation-Shared.pptx
byOddvar Moe
 
PPTX
The Importance of Privilege Control for Server Security
byBert Blevins
 
PDF
Managing privileged account security
byRaleigh ISSA
 
PDF
How fun of privilege escalation Red Pill2017
byAmmarit Thongthua ,CISSP CISM GXPN CSSLP CCNP
 
PPTX
Windows privilege escalation
byDhruv Shah
 
PPTX
Windows privilege escalation by Dhruv Shah
byOWASP Delhi
 
PDF
Well, that escalated quickly! - a penetration tester's approach to privilege ...
byDefCamp
 
PDF
The Essentials | Privileged Access Management
byRyan Gallavin
 
PDF
Privileged identity management
byNis
 
PPTX
The Essential Role of Privilege Control in Server Security
byBert Blevins
 
PDF
Stop the Evil, Protect the Endpoint
byBeyondTrust
 
PDF
Using Advanced Threat Analytics to Prevent Privilege Escalation Attacks
byBeyondTrust
 
PENTRATION TESTING Linux Escalation.ppt
byjospinjj
 
Windows Privilege Escalation Techniques.pptx
bypentest716
 
Your Service Desk is Privileged, Too
byBomgar
 
Untitled document.pdf
bygoogle
 
Annual OktCyberfest 2019
byFahad Al-Hasan
 
Revisiting Privileged Access in Today's Threat Landscape
byLance Peterman
 
The Risks of Horizontal Privilege Escalation.pdf
byuzair
 
Exploring the Depths of Privileged Access Management
byBert Blevins
 
Windows Client Privilege Escalation-Shared.pptx
byOddvar Moe
 
The Importance of Privilege Control for Server Security
byBert Blevins
 
Managing privileged account security
byRaleigh ISSA
 
How fun of privilege escalation Red Pill2017
byAmmarit Thongthua ,CISSP CISM GXPN CSSLP CCNP
 
Windows privilege escalation
byDhruv Shah
 
Windows privilege escalation by Dhruv Shah
byOWASP Delhi
 
Well, that escalated quickly! - a penetration tester's approach to privilege ...
byDefCamp
 
The Essentials | Privileged Access Management
byRyan Gallavin
 
Privileged identity management
byNis
 
The Essential Role of Privilege Control in Server Security
byBert Blevins
 
Stop the Evil, Protect the Endpoint
byBeyondTrust
 
Using Advanced Threat Analytics to Prevent Privilege Escalation Attacks
byBeyondTrust
 

More from jospinjj

PPTX
Object Oriented Programming -Single Inheritance.pptx
byjospinjj
 
PPTX
Unified Modelling Language Class Diagram.pptx
byjospinjj
 
PPTX
Unified Modelling Language Use Case Diagram.pptx
byjospinjj
 
PPTX
FEATURES OF OBJECT ORIENTED PROGRAMMING.pptx
byjospinjj
 
PPTX
Unified Modelling language Component diagram.pptx
byjospinjj
 
PPT
PENETRATION TESTING PAYLOAD.ppt
byjospinjj
 
PPT
PENETRATION TESTING INFORMATION GATHERING.ppt
byjospinjj
 
Object Oriented Programming -Single Inheritance.pptx
byjospinjj
 
Unified Modelling Language Class Diagram.pptx
byjospinjj
 
Unified Modelling Language Use Case Diagram.pptx
byjospinjj
 
FEATURES OF OBJECT ORIENTED PROGRAMMING.pptx
byjospinjj
 
Unified Modelling language Component diagram.pptx
byjospinjj
 
PENETRATION TESTING PAYLOAD.ppt
byjospinjj
 
PENETRATION TESTING INFORMATION GATHERING.ppt
byjospinjj
 

Recently uploaded

PDF
Highway Curves in Transportation Engineering.pdf
byMahmoodKhalid11
 
PDF
Plasticity and Structure of Soil/Atterberg Limits.pdf
byMahmoodKhalid11
 
PDF
Rajesh Prasad- Brief Profile with educational, professional highlights
byRajesh Prasad
 
PDF
Soil Compressibility (Elastic Settlement).pdf
byMahmoodKhalid11
 
PDF
AWS Re:Invent 2025 Recap by FivexL - Guilherme, Vladimir, Andrey
byAndrey Devyatkin
 
PDF
Model QP 2025 scheme Q &A- Module 1 and 2.pdf
bySURESHA V
 
PDF
Computer Graphics Fundamentals (v0p1) - DannyJiang
byDanny Jiang
 
PPTX
Batch-1(End Semester) Student Of Shree Durga Tech. PPT.pptx
byrashesw1122s
 
PDF
Role of Training and Development in Enhancing Safety Performance in Opencast ...
byRathin Biswas
 
PDF
(en/zhTW) Heterogeneous System Architecture: Design & Performance
byDanny Jiang
 
PPTX
Value engineering and cost analysis with case study
byhp9879098082
 
PPTX
uADPF Topology_SFP requirements_locked slides.pptx
byMd Bellal Hossain
 
PDF
Basics of Electronics Task by Vivaan Jo Varghese.pdf
byVivaan Jo Varghese
 
PDF
PROBLEM SLOVING AND PYTHON PROGRAMMING UNIT 3.pdf
byA R SIVANESH M.E., QIP-PG (Cyber Security)., (Ph.D)
 
PPTX
A professional presentation on Cosmos Bank Heist
byssuser7f0075
 
PDF
Shear Strength of Soil (Direct shear test).pdf
byMahmoodKhalid11
 
PDF
Enhancing optical fiber communication systems using repetition coding for imp...
byMouweffeqBouregaa
 
PDF
Applications of AI in Civil Engineering - Dr. Rohan Dasgupta
byRohan Dasgupta
 
PPTX
ME3592 - Metrology and Measurements - Unit - 1 - Lecture Notes
bypprakash21252
 
PPTX
How Does LNG Regasification Work | INOXCVA
byINOXCVA
 
Highway Curves in Transportation Engineering.pdf
byMahmoodKhalid11
 
Plasticity and Structure of Soil/Atterberg Limits.pdf
byMahmoodKhalid11
 
Rajesh Prasad- Brief Profile with educational, professional highlights
byRajesh Prasad
 
Soil Compressibility (Elastic Settlement).pdf
byMahmoodKhalid11
 
AWS Re:Invent 2025 Recap by FivexL - Guilherme, Vladimir, Andrey
byAndrey Devyatkin
 
Model QP 2025 scheme Q &A- Module 1 and 2.pdf
bySURESHA V
 
Computer Graphics Fundamentals (v0p1) - DannyJiang
byDanny Jiang
 
Batch-1(End Semester) Student Of Shree Durga Tech. PPT.pptx
byrashesw1122s
 
Role of Training and Development in Enhancing Safety Performance in Opencast ...
byRathin Biswas
 
(en/zhTW) Heterogeneous System Architecture: Design & Performance
byDanny Jiang
 
Value engineering and cost analysis with case study
byhp9879098082
 
uADPF Topology_SFP requirements_locked slides.pptx
byMd Bellal Hossain
 
Basics of Electronics Task by Vivaan Jo Varghese.pdf
byVivaan Jo Varghese
 
PROBLEM SLOVING AND PYTHON PROGRAMMING UNIT 3.pdf
byA R SIVANESH M.E., QIP-PG (Cyber Security)., (Ph.D)
 
A professional presentation on Cosmos Bank Heist
byssuser7f0075
 
Shear Strength of Soil (Direct shear test).pdf
byMahmoodKhalid11
 
Enhancing optical fiber communication systems using repetition coding for imp...
byMouweffeqBouregaa
 
Applications of AI in Civil Engineering - Dr. Rohan Dasgupta
byRohan Dasgupta
 
ME3592 - Metrology and Measurements - Unit - 1 - Lecture Notes
bypprakash21252
 
How Does LNG Regasification Work | INOXCVA
byINOXCVA
 

PENETRATION TESTING PRIVILEGE ESCALATION.ppt

  • 1.
    SRM Institute ofScience and Technology 1 Dr.J.Jospin Jeya Assistant Professor SRMIST Privilege Escalation
  • 2.
    Privilege Escalation •A PrivilegeEscalation Attack is a technique in which a threat actor gains unauthorized access through a susceptible point and then elevates access permissions to carry out a full-blown attack. •Such threat actors can be external hackers or insiders who exploit vulnerabilities such as inadequate or broken access controls or system bugs to compromise a user account •. Privilege escalation attacks typically aim to gain a powerful level of permission and control the entire system.
  • 3.
    •In the caseof horizontal privilege escalation, the actor takes advantage of lower-level or unprivileged user accounts with weak security policies. •Vertical Privilege Escalation •Also known as Privilege Elevation refers to an attack where the attacker elevates access privileges beyond defined account permissions. •Such attack vectors typically start with the goal of gaining accounts with unlimited administrator privileges, such as System Administrator on Windows or root access on Linux/Unix machines Privilege Escalation Types
  • 4.
    attack vendors includeWeb Application Servers and Application Programming Interfaces. •To gain initial access, attackers authenticate themselves to the system by bypassing user account control or obtaining credentials. •Beyond this, attackers try to find various loopholes in account authorization to gain a level of access to more sensitive data. How Does Privilege Escalation Work

Editor's Notes