Progressive Privilege Escalation Detection For Windows Operating System

We have noticed that Internet insecurity is growing.Attempts of intrusions into computer systems mainly Windows one increase exponentially.Computer hacking has become today very common threat.Theft of money to open credit cards and bank accounts in the victim's name,making unwanted purchases,obtaining cash advantages,selling information to third parties who will use it for illicit or illegal purposes,theft of financial information,blackmailing people,and identity theft are all possible outcomes.Furthermore,a hacked computer may be used to hack into other computers.In that scenario,the compromised computer will be considered as the source of hacking and can be even sued in the case of digital investigation.In view of these remarks,we proposed a solution to audit a windows operating system.The proposed solution based on Power Shell language runs a progressive scan on a different step.Our focus point here is to find the different ways to escalate the privilege(from a user to another)of the operating system at the time the scan is launched.Then,we remove as much as possible false positive,output the result in a format allowing a pentester to directly see what has been tested as well as the flaw discovered.After the flaws have been shown,hints to solve them are suggested.The perimeter of this work covers many vulnerabilities such as insecure user permission,auto login,software exploits,insecure permission in the registry,insecure services,unquoted services,kernel exploit to name but a few…The suggested system can be divided into 2 components which are Linux System(here Kali Linux)and Windows Machine(here Windows 10)linked in a shared network.The Linux system in our architecture is hosting apache2 web server,a PHP script allowing anybody to perform remote code execution,and python language installed to run windows-exploit-suggester,a tool used to reveal windows kernel exploit.The only requirement for the windows machine is Power Shell version 4 or 5 which is by default installed in every current windows system.