version: "1.0.1" name: system description: System exploitation testing - Active Directory attacks, privilege escalation (Linux/Windows), and exploit development.
System
Test system-level security including Active Directory, privilege escalation, and exploit development.
Techniques
| Type | Key Vectors | |
|---|
| Active Directory | Kerberoasting, AS-REP roasting, DCSync, PtH, Golden/RODC Ticket, RBCD, ACL abuse, KeyList, Shadow Credentials, ADCS (ESC1-9/16) | |
| Privilege Escalation | SUID/sudo abuse, kernel exploits, service misconfig, token manipulation | |
| Exploit Development | Buffer overflow, format string, ROP chains, shellcode, heap exploitation | |
Workflow
- Enumerate system and domain information
- Identify escalation paths and misconfigurations
- Exploit with appropriate techniques
- Demonstrate impact (domain admin, root access)
- Document attack chain with evidence
Reference
reference/INDEX.md - Router for AD attacks, privilege escalation, and exploit-dev scenarios (see reference/scenarios/)reference/format-string-exploitation.md - Format string read/write primitives, architecture differences, mitigation bypassreference/heap-exploitation.md - Modern glibc heap techniques (tcache poison, unsorted bin leak, environ stack leak, ROP)