Privilege escalation normally occurs deep into an attack. This means that the attacker will have already done reconnaissance and successfully compromised a system, thereby gaining entry. After this, the attacker will have traversed the compromised system through lateral movement and identified all the systems and devices of interest. In this phase, the attacker wants to have a strong grip on the system. The attacker may have compromised a low-level account and will, therefore, be looking for an account with higher privileges, in order to study the system further or get ready to give the final blow. Privilege escalation is not a simple phase, as it will at times require the attacker to use a combination of skills and tools in order to heighten the privileges. There are generally two classifications of privilege escalation: horizontal and vertical privilege escalation.
Cybersecurity - Attack and Defense Strategies
By :
Cybersecurity - Attack and Defense Strategies
By:
Overview of this book
The book will start talking about the security posture before moving to Red Team tactics, where you will learn the basic syntax for the Windows and Linux tools that are commonly used to perform the necessary operations. You will also gain hands-on experience of using new Red Team techniques with powerful tools such as python and PowerShell, which will enable you to discover vulnerabilities in your system and how to exploit them. Moving on, you will learn how a system is usually compromised by adversaries, and how they hack user's identity, and the various tools used by the Red Team to find vulnerabilities in a system.
In the next section, you will learn about the defense strategies followed by the Blue Team to enhance the overall security of a system. You will also learn about an in-depth strategy to ensure that there are security controls in each network layer, and how you can carry out the recovery process of a compromised system. Finally, you will learn how to create a vulnerability management strategy and the different techniques for manual log analysis.
Related Content you might be interested in
Current Title:
Cybersecurity - Attack and Defense Strategies
Table of Contents (22 chapters)
Title Page
Packt Upsell
Contributors
Preface
Free Chapter
Security Posture
Incident Response Process
Understanding the Cybersecurity Kill Chain
Reconnaissance
Compromising the System
Chasing a User's Identity
Lateral Movement
Privilege Escalation
Security Policy
Network Segmentation
Active Sensors
Threat Intelligence
Investigating an Incident
Recovery Process
Vulnerability Management
Log Analysis
Other Books You May Enjoy
Index
Customer Reviews