Persistence – Accessibility Features – Penetration Testing Lab

The accessibility features provide additional options (on screen keyboards, magnifier, screen reading etc.) that could assist people with disabilities to use Windows operating systems easier. However, this functionality can be abused to achieve persistence on a host that RDP is enabled and Administrator level privileges have been obtained. This technique touches the disk, or modification…

Operation OwnedCloud: Exploitation and Post-exploitation Persistence - Rhino Security Labs

Threat Hunting Certificate Account Persistence

Strategies for the Future of Automotive Penetration Testing - Embedded Computing Design

Advanced Threat Hunting for Persistence Using KQL (Kusto Query Language), by William Suryajaya, MII Cyber Security Consulting Services

Windows Persistence: Accessibility Features - Hacking Articles

Abusing LNK Features for Initial Access and Persistence

A Taxonomy for Threat Actors' Persistence Techniques - ScienceDirect

RED TEAM Operator: Windows Persistence Course

The MITRE ATT&CK Framework Explained