Windows privilege escalation through network backdoor and information mining using USB Hacktool / Hidayat UI Hazazi Ab Wahab and Jasni Mohamad Zain

Ab Wahab, Hidayat UI Hazazi and Mohamad Zain, Jasni (2018) Windows privilege escalation through network backdoor and information mining using USB Hacktool / Hidayat UI Hazazi Ab Wahab and Jasni Mohamad Zain. Malaysian Journal of Computing (MJoC), 3 (1). pp. 12-27. ISSN 2600-8238

Official URL: https://mjoc.uitm.edu.my

Abstract

A privilege escalation in the Windows system can be defined as a method of gaining access to the kernel system and allowing the user to have an administrative access to the local admin account system on the computer. This paper describes the proof of concept attack scheme using Universal Serial Bus (USB) Hacktool. The attack scheme, the same interaction on the physical access to the computer system could be accomplished by the attacker using a little effort on social engineering and specialized USB Hacktool to take over the computer system in full where it will collect valuable information and escalate the administrative privilege to gain unauthorized admin access which further attack can be done like setting up an open port for backdoor access. The evaluation of this paper gives a significant value as for educational purpose for proof of concept security project. The implementation on this project could help the responsible team to take necessary action toward physical security access to their computer or workstation.

Metadata

Item Type: Article
Creators:
Creators
Email / ID Num.
Ab Wahab, Hidayat UI Hazazi
Hidayat.ulhazazi@gmail.com
Mohamad Zain, Jasni
jasni@tmsk.uitm.edu.my
Subjects: Q Science > QA Mathematics > Factor analysis. Principal components analysis. Correspondence analysis
Q Science > QA Mathematics > Online data processing
Q Science > QA Mathematics > Web-based user interfaces. User interfaces (Computer systems)
Q Science > QA Mathematics > Web databases
Divisions: Universiti Teknologi MARA, Shah Alam > Faculty of Computer and Mathematical Sciences
Journal or Publication Title: Malaysian Journal of Computing (MJoC)
UiTM Journal Collections: UiTM Journal > Malaysian Journal of Computing (MJoC)
ISSN: 2600-8238
Volume: 3
Number: 1
Page Range: pp. 12-27
Keywords: Attack, Universal Serial Bus, Hacking, Data mining, Backdoor, Metasploit
Date: 2018
URI: https://ir.uitm.edu.my/id/eprint/43154
Edit Item
Edit Item

Download

[thumbnail of 43154.pdf] Text
43154.pdf

Download (612kB)

ID Number

43154

Indexing

Statistic

Statistic details