Mine for Local Privilege Escalation Vulnerabilities in Windows Applications Using Automation and Virtualization
TLDR: A year ago, I noticed that there are very easy-to-spot vulnerabilities on Windows third-party applications that lead to local privilege escalation. I developed an automation solution that browses the web looking for Windows applications, downloads and installs them, and then performs some static scans on the system after installing the targeted software. When it finds vulnerable software, it sends notifications to Slack. Using this project, I was able to find more than 40 LPE vulnerabilities and 2 CVEs in a very short period. I called this project Miner: GitHub Repository. This post briefly talks about the project and shows how to start employing it.