摘要 |
FIELD: information technologies. ^ SUBSTANCE: data gathering application is executed in a target system. Various data is collected, which indicates privileges escalation routes, including data of user accounts, file resolving data and system register data. Collected data is analysed in compliance with heuristics. System accounts are displayed as nodes on a graph. Detected privileges escalation between accounts are displayed as ribs between their appropriate accounts. A user may tune the displayed graph to focus on certain target accounts and categories of privileges escalation. ^ EFFECT: increased validity of detecting authority abuse in the system. ^ 15 cl, 9 dwg |