Open in app

Sign in

Write

Sign in

Windows Privilege Escalation | Efs Potato | TryHackMe Stealth

Motasem Hamdan
1 min readDec 5, 2023

--

TryHackMe Stealth

We covered TryHackMe Stealth machine where we went over the typical stages of enumerating open ports and services with Nmap and we found an upload form that plays the role of Powershell script analyzer. We uploaded a reverse shell Powershell script to gain the first foothold but we made sure to delete all log files to keep the connection alive and prevent attracting the attention of the blue team. Then we used PrivescCheck script to enumerate for available privilege escalation vectors and we found that the current user has complete control over the web server process so we uploaded a webshell and executed the EfsPotato exploit to have SYSTEM access.

Offensive Security Certified Professional Study Notes and Guide

This is a 1099 pages of notes that will guide and help you prepare for and pass the OSCP exam. When you buy this…

www.buymeacoffee.com

The Complete Practical Web Application Penetration Testing Course

Course Content: Introduction to Injection Vulnerabilities SQL Injection - Authentication Bypass SQL Injection - Error…

www.buymeacoffee.com

Challenge Description

Use your evasion skills to pwn a Windows target with an updated defence mechanism.

Full writeup can be found here.

Tryhackme
Tryhackme Walkthrough
Tryhackme Writeup
Hacking
Cybersecurity

--

--

Motasem Hamdan
Motasem Hamdan

Written by Motasem Hamdan

541 Followers
10 Following

Motasem Hamdan is a content creator and swimmer who creates cyber security training videos and articles. https://www.youtube.com/@MotasemHamdan

No responses yet

Help

Status

About

Careers

Press

Blog

Privacy

Terms

Text to speech

Teams