Skip to content
attack.paths
Iniciar sesión
← LibraryTechnique entry
EX-PROXYNOTSHELLInitial Access

ProxyNotShell (CVE-2022-41040/-41082)

Authenticated SSRF + Remote PowerShell deserialization — requires any user credential, then RCE as SYSTEM.

§ Where this technique fits

EX-PROXYNOTSHELL is catalogued under the Initial Access tactic of the offensive-security kill-chain. It appears in 0 approved dossiers in the registry, typically.