Agreed. The article also does not seem to explain it. From what I understood the... | Hacker News

HN2new | past | comments | ask | show | jobs | submit

		cjones26 on July 24, 2021 \| parent \| context \| favorite \| on: HiveNightmare a.k.a. SeriousSAM – anybody can read... Agreed. The article also does not seem to explain it. From what I understood the SAM only stores encrypted password hashes, nothing that could be readily exploited for local privilege escalation.

jesboat on July 24, 2021 [–]

There's a video (bleh) which appears to extract the hash and then use a pass-the-hash. I'm not clear on exactly what the preconditions are (are NTLMv1/v2 hashes still stored by default? Does PTH work with newer hashes? Etc) or if there's another way to escalate

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact