Sektor7 – RED TEAM Operator: Privilege Escalation in Windows Course & RED TEAM Operator: Windows Persistence Course

1,250.00

You’re interested in Windows security, right? Otherwise you wouldn’t be here. You are either led by natural curiosity of security researcher or doing penetration testing professionally, or both. And maybe you need to get better understanding of how privilege escalation works in Microsoft environments.

So here’s what’s in the course.
It is indeed about escalating privileges in Windows. But it’s not only about getting SYSTEM, as there are other shades of that tactic. From the course you’ll learn about becoming another user, breaking out from Medium to High Integrity Level, or from High to System, and abusing privileges assigned to your access token to get more powers on the box.

Real threat actors utilize various Tactics, Techniques and Procedures (aka TTPs). One of the tactic is Persistence – a way to survive a breached machine restart and preserve access to a target environment. There is a lot of focus on what methods adversaries use to exploit a particular vulnerability or how their C2 channels and infrastructure look like. Less often you find discussions about persistence. This course is aiming to change that.

You will learn almost 30 different persistence techniques working on Windows 10. Most of them were used by nation-state threat actors, like EquationGroup, Turla, APT29, ProjectSauron or malware, including Flame or Stuxnet.

 

HOMEPAGE – https://www.sektor7.net/#training

 

Original Price: $458
Our Price: $15

Description

Size: 9.67 GB

You Will Learn

  • 20 different techniques of Windows Privilege Escalation, like:
    • DLL Hijacking
    • Bypassing UAC
    • Misusing Windows Vault
    • Exploiting leaked handles
    • Hacking named pipes
    • Abusing access tokens
    • DLL Proxying
    • COM hijacking
    • Multiaction Tasks
    • Port Monitors
    • Time Providers
    • WMI Eventing
    • LSA-as-a-Persistence
    • and much more…
  • Knowledge about Windows persistence used by real threat actors, including nation-state adversaries

Target Audience

  • Ethical Hackers
  • Penetration Testers
  • Blue Teamers
  • Threat Hunters
  • All security engineers/professionals wanting to learn advanced offensive tactics

Related products

  • Security , Shop

    Open-Source Intelligence (OSINT) Fundamentals

    Description

    This course focuses on Open Source Intelligence (OSINT) tactics and techniques designed to help you improve your investigative game. Students should take this course if they are interested in:

    • Gaining a better understanding of OSINT techniques
    • Improving investigative skillset
    • Improving overall research methodology

       

      HOMEPAGE – https://academy.tcm-sec.com/p/osint-fundamentals

       

      Original Price: $30
      Our Price: $5

      400.00

    • Security , Shop

      eLearnSecurity – Threat Hunting Professional v2

      Course at a glance

      • Establish a proactive defense mentality
      • Hunt for threats in your organization’s systems and network
      • Use threat intelligence or hypotheses to hunt for known and unknown threats
      • Inspect network traffic and identify abnormal activity in it
      • Perform memory forensics using Redline, Volatility and a variety of tools to identify in-memory malware
      • Use tools such as Sysmon and …

      512.00

    • Security , Shop

      Reverse Engineering Course – The Hacks Behind Cracking By DedSec (In Hindi)

      Description:

      In this Reverse Engineering training course, expert  DedSec will teach you about common software vulnerabilities and how to find them, as well as how the vulnerabilities differ between various operating systems. This course is designed for beginners who are looking to get started in RE.You will start by learning about reversing compiled Windows applications,Once you have completed this …

      415.00

    • Security , Shop

      eLearnSecurity – Mobile Application Security and Penetration Testing v2

      Course at a glance

      • Start from iOS and Android architectures basics
      • Exposes Android and iOS vulnerabilities in-depth
      • Covers mobile OSs security mechanisms and implementations
      • Covers Mobile applications reverse engineering
      • In depth mobile applications static and dynamic analysis
      • Practice on real world mobile applications
      • Build your own home lab on mobile application security
      • Provides you the skills necessary to peform Penetration tests of mobile applications
      • Covers: APKTool, …

      580.00