This is a speed run on Windows Privilege Escalation
JuicyPotato, Lazagne and Nc was allready uploaded to the target machine
And reverse shell was created by ChatGPT, i used one liner for downloading the shell and invoking it.
Also i used my personal documentation about the hacking process so i dont have to type the commands.
According to the Forum about the topic people are stuck on ldapadmin account. This is shown in video, how to solve it.
The rest is easy when you have NT/System shell.
1. wmic qfe list brief /format:table you can do this in normal or system shell
2. lazagne on system shell
3. cd and type on system shell
4. (null) see modules on how to search for files
2 июл 2024