splinter_codeFeb 10, 2023

πŸ”₯ Brace yourself #LocalPotato is out πŸ₯”
Our new NTLM reflection attack in local authentication allows for arbitrary file read/write & elevation of privilege.
Patched by Microsoft, but other protocols may still be vulnerable.
cc @decoder_it

Enjoy! πŸ‘‡

https://www.localpotato.com/localpotato_html/LocalPotato.html

LocalPotato - When Swapping The Context Leads You To SYSTEM

Here we are again with our new *potato flavor, the LocalPotato! This was a cool finding so we decided to create this dedicated website ;)

Show threadClΓ©ment Labro
@splinter_code @decoder_it Really nice article! πŸ‘β€‹
I like the recap of the different mitigations that were implemented by MS over the years. It makes it a good resource for anyone who would like to start working on local NTLM relaying attacks.
Feb 16, 2023 at 7:59amWeb
Show threadsplinter_codeFeb 18, 2023
@itm4n @decoder_it Thanks man! πŸ™β€‹