当前位置:网站首页>[Red Team] ATT&CK - Self-starting - Self-starting mechanism using LSA authentication package
[Red Team] ATT&CK - Self-starting - Self-starting mechanism using LSA authentication package
2022-08-10 03:31:00 【Thousands of miles :)】
Technical Notes
An attacker could abuse the authentication package to execute DLLs at system startup.The Windows Authentication Pack DLL is loaded by the Local Security Authority (LSA) process at system startup.They provide support for the operating system's multiple login processes and multiple security protocols.
https://docs.microsoft.com/en-us/windows/win32/secauthn/lsa-authentication?redirectedfrom=MSDN<边栏推荐
猜你喜欢
随机推荐
UXDB现在支持函数索引吗?
基于误差状态的卡尔曼滤波ESKF
OpenCV图像处理学习二,图像掩膜处理
剑指offer专项突击版第25天
数据在内存中的存储
基于C51的中断控制
从滑动标尺模型看企业网络安全能力评估与建设
MMDetection框架的anchor_generators.py解析
P1564 Worship
2022.8.8考试清洁工老马(sweeper)题解
16. 最接近的三数之和
【Kali安全渗透测试实践教程】第7章 权限提升
what is eabi
Data Governance (5): Metadata Management
【二叉树-中等】1104. 二叉树寻路
2022强网杯 Quals Reverse 部分writeup
Write a drop-down refresh component
2022.8.8 Exam area link (district) questions
MySQL:日志系统介绍 | 错误日志 | 查询日志 | 二进制日志:bin-log数据恢复实践 | 慢日志查询
【二叉树-简单】112. 路径总和