Hey friends, we’ve got a short but sweet tale of pentest pwnage for you today. Key lessons learned:

  • Definitely consider BallisKit for your EDR-evasion needs
  • If you get local admin to a box, enumerate, enumerate, enumerate!  There might be a delicious task or service set to run as a domain admin that can quickly escalate your privileges!

Written by: Brian Johnson

Share on socials: