HiveNightmare a.k.a. SeriousSam Local Privilege Escalation in Windows – CVE-2021-36934

preview_player
Показать описание
Disclaimer: This video is for educational purposes only use it at your own risk and only on systems that you have permissions to do so.

Link to blog:

Exploit-script:
  1. network oddmin
Рекомендации по теме
HiveNightMare | CVE-2021-36934 0:10:37

HiveNightMare | CVE-2021-36934 | SeriousSAM | Local Privilege Escalation(LPE)

Abusing HiveNightmare (SeriousSam) 0:13:29

Abusing HiveNightmare (SeriousSam) LPE - Escalating to SYSTEM | CVE-2021-36934

Check Windows 10 0:05:14

Check Windows 10 for SeriousSAM and HiveNightmare vulnerability

SeriousSam, HiveNightmare, CVE-2021-36934. 0:03:00

SeriousSam, HiveNightmare, CVE-2021-36934. Whatever you want to call it, here's the workaround.

HiveNightmare - Bug 0:21:20

HiveNightmare - Bug in ACLs of Registry Hives [CVE-2021-36934]

Windows privilege escalation 0:01:39

Windows privilege escalation | cve-2021-36934 poc | hive nightmare vulnerability

UNHACKED 018 PetitPotam 0:07:54

UNHACKED 018 PetitPotam Attack

CVE-2022-0354: Local Privilege 0:01:57

CVE-2022-0354: Local Privilege Escalation - Lenovo Commerical Vantage

Windows hacking with 0:12:07

Windows hacking with a Razer Mouse - Exploiting a Local Privilege Escalation Zero Day

CVE-2021-24084 | Windows 0:01:23

CVE-2021-24084 | Windows MDM Local Privilege Escalation Zero Day | Unpatched Since 2020

From User to 0:01:36

From User to Domain Admin in (less than) 60 seconds | CVE-2021-42278 and CVE-2021-42287

Exploiting PrintNightmare Vulnerability 0:41:00

Exploiting PrintNightmare Vulnerability to Dump Credential Hashes - RCE CVE 2021 1675

voidmap - CVE-2021-40449 0:00:34

voidmap - CVE-2021-40449

Abusing PrintNightmare RCE 0:12:34

Abusing PrintNightmare RCE (CVE-2021-1675) - Dump Hashes on Domain Controllers

Use PowerShell PowerUp 0:01:45

Use PowerShell PowerUp to detect Windows local privilege escalation vulnerabilities

InstallerFileTakeOver New Windows 0:04:56

InstallerFileTakeOver New Windows zero-day with public exploit lets you become an admin(English Ver)

PrintNightmare and HiveNightmare 0:18:15

PrintNightmare and HiveNightmare Vulnerability Assessment with Rapid7 InsightVM - Lab Demo 5

Windows 10 exploit 0:20:32

Windows 10 exploit 2016 (Privilege escalation, win 7, 8, 10)

Exploiting Polkit pkexec 0:18:53

Exploiting Polkit pkexec LPE Vulnerability (CVE-2021-4034) - TryHackMe 'PwnKit' Room

Social Engineering PowerShell 0:10:46

Social Engineering PowerShell Empire - Macro

CEH Module 5 0:09:08

CEH Module 5 Hacking Windows SAM files

CVE-2021-40444. 0Day 0:01:05

CVE-2021-40444. 0Day

InstallerFileTakeOver New Windows 0:05:27

InstallerFileTakeOver New Windows zero-day with public exploit lets you become an admin

SeriousSAM & PetitPotam 1:52:17

SeriousSAM & PetitPotam - Kaseya Universal Decryptor, Window's Process Hacker, Chrome 92

Комментарии
Автор

Just added some improvements. the script will now check first if the lowpriv user have access to

thenetworkoddmin