system
Compare original and translation side by side
🇺🇸
Original
English🇨🇳
Translation
ChineseSystem
系统
Test system-level security including Active Directory, privilege escalation, and exploit development.
测试系统级安全性,包括Active Directory、权限提升以及漏洞利用开发。
Techniques
技术手段
| Type | Key Vectors |
|---|---|
| Active Directory | Kerberoasting, AS-REP roasting, DCSync, PtH, Golden/RODC Ticket, RBCD, ACL abuse, KeyList, Shadow Credentials, ADCS (ESC1-9/16) |
| Privilege Escalation | SUID/sudo abuse, kernel exploits, service misconfig, token manipulation |
| Exploit Development | Buffer overflow, format string, ROP chains, shellcode, heap exploitation |
| 类型 | 核心攻击向量 |
|---|---|
| Active Directory | Kerberoasting, AS-REP roasting, DCSync, PtH, Golden/RODC Ticket, RBCD, ACL abuse, KeyList, Shadow Credentials, ADCS (ESC1-9/16) |
| 权限提升 | SUID/sudo滥用、内核漏洞利用、服务配置错误、令牌操纵 |
| 漏洞利用开发 | 缓冲区溢出、格式化字符串、ROP链、Shellcode、堆利用 |
Workflow
工作流程
- Enumerate system and domain information
- Identify escalation paths and misconfigurations
- Exploit with appropriate techniques
- Demonstrate impact (domain admin, root access)
- Document attack chain with evidence
- 枚举系统和域信息
- 识别权限提升路径和配置错误
- 使用合适的技术手段进行漏洞利用
- 展示攻击影响(域管理员权限、root权限)
- 记录攻击链并留存证据
Reference
参考资料
- - AD attacks, privilege escalation, exploit development techniques
reference/system-exploitation.md - - Format string read/write primitives, architecture differences, mitigation bypass
reference/format-string-exploitation.md - - Modern glibc heap techniques (tcache poison, unsorted bin leak, environ stack leak, ROP)
reference/heap-exploitation.md
- - Active Directory攻击、权限提升、漏洞利用开发技术
reference/system-exploitation.md - - 格式化字符串读写原语、架构差异、绕过缓解措施
reference/format-string-exploitation.md - - 现代glibc堆利用技术(tcache投毒、未排序bin泄露、environ栈泄露、ROP)
reference/heap-exploitation.md