EfsPotato has been observed in the wild in computer intrusions: https://pinboard.in/u:droberson/t:efspotato/ rule efspotato { meta: description = "EfsPotato privilege escalation exploit" reference = "https://github.com/zcgonvh/EfsPotato" strings: $efspotato = "EfsPotato" condition: uint16(0) == 0x5a4d and $efspotato } YARA Rules Index
Tag: privesc
REVIEW: RED TEAM Operator: Privilege Escalation in Windows Course by SEKTOR7 Institute
This is my review of the RED TEAM Operator: Privilege Escalation in Windows course offered by SEKTOR7 Institute. As an affiliate, I make money with qualifying purchases. RED TEAM Operator: Privilege Escalation in Windows is a brief introduction to the subject. As with other offerings by SEKTOR7, this course expects that you know the basics of …
DMFR SECURITY 