Local Admin | GracefulSecurity

Deploying: Microsoft’s Local Administrator Password Solution (LAPS)

by HollyGracefulOctober 13, 2015May 29, 2021

A common and critical vulnerability exploited during penetration tests is that of reused Local Administrator passwords. This issue is a common one it allows an attacker to find a vulnerable machine on a network, pull the administrative hash out of that machine and then log-in to a more interesting machine or ultimately privilege escalate.

From Network boot to Local Admin: PXE Booting

by HollyGracefulJanuary 17, 2015January 30, 2020

Pre-Execution Boot, or PXE, is a method of booting a workstation machine by loading an operating system across the network. If PXE boot can be enabled (often it is enabled by default, even when machines are restricted from booting CDs or USB Devices) then an stripped down Linux operating system can be loaded over the network and used to compromise the target.