ποΈWindows Components Object Model
Windows Components Object Model is an old however widely used technology on Windows Systems. Its Attack surface is vast and can be utilized for various goals which I hope to cover in future articles.
Known Techniques
COM Hijacking
COM Elevation of Privilege - UAC Bypass
Lateral Movement with DCOM
Code Execution
COM / DCOM reading material
Main Source
General COM Internals
COM Hijacking / Persistence
DCOM Lateral Movement
COM Privilege Escalation / UAC Bypasses
PreviousOffice Templates and GlobalDotName - A Stealthy Office Persistence TechniqueNextDemystifying Windows Component Object Model (COM)
Last updated
Was this helpful?