Home / Windows Security

🪟 Windows Security

Windows penetration testing and security assessment guide. Covering privilege escalation, Windows services exploitation, UAC bypass, credential theft, and defense evasion on Windows systems.

UAC Bypass

High

User Account Control bypass techniques. Registry modifications, COM hijacking.

Full Guide

DLL Hijacking

High

Search order DLL hijacking, DLL proxying, phantom DLL hijacking.

Full Guide

LSASS Dumping

Critical

Extract credentials from LSASS process. MiniDump, direct attack, defender bypassing.

Full Guide

SAM Database

High

Extract password hashes from SAM database. Registry and volume shadow copy techniques.

Full Guide

Windows Defender

High

Disable, bypass, AMSI patching, signature removal, real-time protection tampering.

Full Guide

BlueHammer LPE

Critical

Windows Defender driver exploitation for local privilege escalation to SYSTEM.

Full Guide

🛠️ Essential Tools

Mimikatz

Credential extraction, pass-the-hash, SAM dumping, token manipulation.

WinPEAS

Windows privilege escalation audit script. Check for privesc vectors.

PowerUp

PowerShell privilege escalation checking. Service misconfigs, registry issues.

PowerSploit

PowerShell penetration testing framework. Privesc, persistence, exfiltration.

Seatbelt

Security assessment script. System checks, AMSI, WDigest, user sessions.

SharpUp

C# rewrite of PowerUp. Check for privilege escalation vectors.

Back to Home