Skip to content
/ BadWindowsService Public

An insecurely implemented and installed Windows service for emulating elevation of privileges vulnerabilities

License

MIT license
42 stars 5 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

eladshamir/BadWindowsService

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
BadWindowsService
BadWindowsService
 
 
Installer
Installer
 
 
BadWindowsService.sln
BadWindowsService.sln
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 

Repository files navigation

Bad Windows Service

This project is an insecurely implemented and configured Windows service, vulnerable to the following attacks:

  • Hijack Execution Flow: DLL Search Order Hijacking (T1574.001).
  • Hijack Execution Flow: Path Interception by PATH Environment Variable (T1574.007).
  • Hijack Execution Flow: Path Interception by Search Order Hijacking (T1574.008).
  • Hijack Execution Flow: Path Interception by Unquoted Path (T1574.009).
  • Hijack Execution Flow: Services File Permissions Weakness (T1574.010).
  • Hijack Execution Flow: Services Registry Permissions Weakness (T1574.011).

The Installer project installs the service in the designated path with some of the above misconfigurations, and must be launched in an elevated context.

The BadWindowsService project is implements a a service with some of the above vulnerabilities.

Exploitation of this service results in local elevation of privileges to the security context of LocalSystem.

About

An insecurely implemented and installed Windows service for emulating elevation of privileges vulnerabilities

Resources

Readme

License

MIT license
Activity

Stars

42 stars

Watchers

1 watching

Forks

5 forks
Report repository

Releases 1

Bad Windows Service v1.0 Latest
Aug 25, 2022

Packages

No packages published

Languages