/ NetSPI / Blogs /

Tag: Privilege Escalation

CVE-2025-26685 – Spoofing to Elevate Privileges with Microsoft Defender for Identity

Privilege Escalation |

Lateral Movement in Azure App Services

App Services | Azure | Command Injection | Function App | Lateral Movement | Managed Identity | Privilege Escalation |

Azure Privilege Escalation Using Managed Identities

Azure | Azure Pen Testing | Azure Virtual Machines | Cloud Security | Privilege Escalation |

Azure Privilege Escalation via Cloud Shell

Azure | Azure Pen Testing | Cloud Security | Cloud Shell | cloudshell | Privilege Escalation |

Exploiting SQL Server Global Temporary Table Race Conditions

Global Temporary Tables | Privilege Escalation | SQL Server |

ADIDNS Revisited – WPAD, GQBL, and More

adidns | powershell | Privilege Escalation | Red Team | Spoofing |

Beyond LLMNR/NBNS Spoofing – Exploiting Active Directory-Integrated DNS

adidns | powershell | Privilege Escalation | Spoofing |

Tokenvator: A Tool to Elevate Privilege using Windows Tokens

.NET | Elevate Privileges | Privilege Escalation | Tokenvator | Windows Tokens |

How to get SQL Server Sysadmin Privileges as a Local Admin with PowerUpSQL

powershell | PowerUpSQL | Privilege Escalation | SQL Server |

Finding Weak Passwords for Domain SQL Servers on Scale using PowerUpSQL

Penetration Test | powershell | Privilege Escalation | SQL Server |

Blindly Discover SQL Server Instances with PowerUpSQL

Data Discovery | Privilege Escalation | SQL Server |

PowerUpSQL: A PowerShell Toolkit for Attacking SQL Server

powershell | Privilege Escalation | SQL Server |