Jun 14, 2012

escanner Escalation Pentesting Tool

escanner is a small tool that helps you thread scan file(s)/directories recursively for possible vulnerability of insecure file permissions that could result on local privilege escalation due to some misconfiguration of operating systen, software vendors or by users. One example, a local attacker can replace/overwrite the original file to a malicious binary that could perform unauthorized actions so when the machine restart the malicious binary will be executed with SYSTEM privileges also it can cause DoS(Denial of Service) for some daemon if the configuration file is deleted or changed.

Using the tool:
It recursively check files that has system rights either Full Control or Modify with local group account :

1. “Everyone”
2. “USERS” Built in users
3. “GUEST” Built in guest

Download Link:http://www.theprojectxblog.net/wp-content/uploads/2012/06/escanner.exe

Source: http://www.theprojectxblog.net/escanner-escalation-pentesting-tool/

If you like my blog, Please Donate Me

No comments: