Lateral Movement | writeups.xyz

Title	Vulnerabilities	Programs	Authors
Double Agent: Exploiting Pass-through Authentication Credential Validation in Azure AD	Cloud Privilege Escalation Lateral Movement	Microsoft (Entra ID / Azure AD)	Ilan Kalendarov (@IKalendarov) Elad Beber
The risk in malicious AI models: Wiz Research discovers critical vulnerability in AI-as-a-Service provider, Replicate	AI Malicious AI Model RCE Lateral Movement TCP Injection	Replicate	Shir Tamari (@Shirtamari) Sagi Tzadik (@Sagitz_)
Lateral movement and on-prem NT hash dumping with Microsoft Entra Temporary Access Passes	Lateral Movement Persistence Post-Exploitation	Microsoft (Entra ID / Azure AD)	Dirk-Jan Mollema (@_Dirkjan)
Performance, Diagnostics, and WMI	Lateral Movement Windows	Undisclosed	Steven Flores (@0xthirteen)
#BrokenSesame: Accidental ‘write’ permissions to private registry allowed potential RCE to Alibaba Cloud Database Services	Cloud RCE Container Escape Kubernetes Privilege Escalation Lateral Movement Supply Chain Attack Cross-Tenant Vulnerability	Alibaba	Ronen Shustin (@Ronenshh) Shir Tamari (@Shirtamari)
Your Browser is Not a Safe Space	Local Privilege Escalation Lateral Movement	Undisclosed	Corey Ham
Azure Ad Kerberos Tickets: Pivoting To The Cloud	Active Directory Cloud Lateral Movement	Undisclosed	Edwin David
Jumping into SOCKS	Lateral Movement	Undisclosed	Jacques Coertze (@JCoertze)
[RE:SCRUTINY] Delay Then Migrate Your Meterpreter	Internal Pentest Lateral Movement	Undisclosed	RE:HACK (@Rehackxyz)
The power of adaptability through experience.	Lateral Movement Active Directory Privilege Escalation	Undisclosed	Mike Saunders (@Hardwaterhacker)
From Self-Hosted GitHub Runner to Self-Hosted Backdoor	CI/CD Lateral Movement Post-Exploitation	GitHub	Adnan Khan (@Adnanthekhan) Mason Davis Matt Jackoski

Page 1 of 1