What do you think?
Rate this book
Privilege Escalation Techniques: Learn the art of exploiting Windows and Linux systems
Escalate your privileges on Windows and Linux platforms with step-by-step instructions and deepen your theoretical foundations
Key FeaturesDiscover a range of techniques to escalate privileges on Windows and Linux systemsUnderstand the key differences between Windows and Linux privilege escalationExplore unique exploitation challenges in each chapter provided in the form of pre-built VMsBook DescriptionPrivilege Escalation Techniques is a detailed guide to privilege escalation techniques and tools for both Windows and Linux systems. This is a one-of-a-kind resource that will deepen your understanding of both platforms and provide detailed, easy-to-follow instructions for your first foray into privilege escalation.
The book uses virtual environments that you can download to test and run tools and techniques. After a refresher on gaining access and surveying systems, each chapter will feature an exploitation challenge in the form of pre-built virtual machines (VMs). As you progress, you will learn how to enumerate and exploit a target Linux or Windows system. You’ll then get a demonstration on how you can escalate your privileges to the highest level.
By the end of this book, you will have gained all the knowledge and skills you need to be able to perform local kernel exploits, escalate privileges through vulnerabilities in services, maintain persistence, and enumerate information from the target such as passwords and password hashes.
What you will learnUnderstand the privilege escalation process and set up a pentesting labGain an initial foothold on the systemPerform local enumeration on target systemsExploit kernel vulnerabilities on Windows and Linux systemsPerform privilege escalation through password looting and finding stored credentialsGet to grips with performing impersonation attacksExploit Windows services such as the secondary logon handle service to escalate Windows privilegesEscalate Linux privileges by exploiting scheduled tasks and SUID binariesWho this book is forIf you’re a pentester or a cybersecurity student interested in learning how to perform various privilege escalation techniques on Windows and Linux systems – including exploiting bugs and design flaws – then this book is for you. You’ll need a solid grasp on how Windows and Linux systems work along with fundamental cybersecurity knowledge before you get started.
Table of ContentsIntroduction to Privilege EscalationSetting Up Our LabGaining Access (Exploitation)Performing Local EnumerationWindows Kernel ExploitsImpersonation AttacksWindows Password MiningExploiting ServicesPrivilege Escalation through the Windows RegistryLinux Kernel ExploitsLinux Password MiningScheduled TasksExploiting SUID Binaries
Key FeaturesDiscover a range of techniques to escalate privileges on Windows and Linux systemsUnderstand the key differences between Windows and Linux privilege escalationExplore unique exploitation challenges in each chapter provided in the form of pre-built VMsBook DescriptionPrivilege Escalation Techniques is a detailed guide to privilege escalation techniques and tools for both Windows and Linux systems. This is a one-of-a-kind resource that will deepen your understanding of both platforms and provide detailed, easy-to-follow instructions for your first foray into privilege escalation.
The book uses virtual environments that you can download to test and run tools and techniques. After a refresher on gaining access and surveying systems, each chapter will feature an exploitation challenge in the form of pre-built virtual machines (VMs). As you progress, you will learn how to enumerate and exploit a target Linux or Windows system. You’ll then get a demonstration on how you can escalate your privileges to the highest level.
By the end of this book, you will have gained all the knowledge and skills you need to be able to perform local kernel exploits, escalate privileges through vulnerabilities in services, maintain persistence, and enumerate information from the target such as passwords and password hashes.
What you will learnUnderstand the privilege escalation process and set up a pentesting labGain an initial foothold on the systemPerform local enumeration on target systemsExploit kernel vulnerabilities on Windows and Linux systemsPerform privilege escalation through password looting and finding stored credentialsGet to grips with performing impersonation attacksExploit Windows services such as the secondary logon handle service to escalate Windows privilegesEscalate Linux privileges by exploiting scheduled tasks and SUID binariesWho this book is forIf you’re a pentester or a cybersecurity student interested in learning how to perform various privilege escalation techniques on Windows and Linux systems – including exploiting bugs and design flaws – then this book is for you. You’ll need a solid grasp on how Windows and Linux systems work along with fundamental cybersecurity knowledge before you get started.
Table of ContentsIntroduction to Privilege EscalationSetting Up Our LabGaining Access (Exploitation)Performing Local EnumerationWindows Kernel ExploitsImpersonation AttacksWindows Password MiningExploiting ServicesPrivilege Escalation through the Windows RegistryLinux Kernel ExploitsLinux Password MiningScheduled TasksExploiting SUID Binaries
340 pages, Kindle Edition
Published November 25, 2021
6 people are currently reading
31 people want to read
Ratings & Reviews
Friends & Following
Create a free account to discover what your friends think of this book!
Community Reviews
Displaying 1 of 1 review
December 1, 2021
I'm a red team instructor and got a preview copy of the book to review.
I am thoroughly impressed.
The subject of the book is not what many consider introductory for cybersecurity. But, Alexis Ahmed does an amazing job breaking down the concepts to their lowest level to make this book as accessible as possible to the reader.
This makes the book far more than a field guide. And, while including instructions and walkthrough for setting up labs and the tools used throughout the book, it is far more than just an introduction.
Anyone who reads and completes the labs in this book should be quite well prepared to start a penetration testing journey. With this knowledge and these skills in hand, the next step is repetition and mastery.
I am thoroughly impressed.
The subject of the book is not what many consider introductory for cybersecurity. But, Alexis Ahmed does an amazing job breaking down the concepts to their lowest level to make this book as accessible as possible to the reader.
This makes the book far more than a field guide. And, while including instructions and walkthrough for setting up labs and the tools used throughout the book, it is far more than just an introduction.
Anyone who reads and completes the labs in this book should be quite well prepared to start a penetration testing journey. With this knowledge and these skills in hand, the next step is repetition and mastery.
Displaying 1 of 1 review