legal contact rss
 

PENTESTER’S WINDOWS NTFS TRICKS COLLECTION

05.05.2019 14:26

René Feingruber "Pentesters Windows NTFS tricks collection

SEC Consult is publishing an excelent blog article on how to do some NTFS tricks to gain your goals.

TRICK 1: CREATE FOLDERS WITHOUT PERMISSIONS (CVE-2018-1036/NTFS EOP)
TRICK 2: BYPASS PATH RESTRICTIONS WITH ALTERNATE DATA STREAMS
TRICK 3: CREATE FILES WHICH CAN’T BE FOUND BY USING THE “…” FOLDER
TRICK 4: “HIDE” THE DESTINATION OF A DIRECTORY JUNCTION
TRICK 5: HIDE ALTERNATE DATA STREAMS
TRICK 6: HIDING THE PROCESS BINARY

REFERENCES: