Nssm-2.24 Privilege Escalation [portable] -

Look for nssm.exe in the path or the Parameters\Application registry key.

(Non-Sucking Service Manager) is a legitimate tool used to run any executable as a Windows service, it is frequently exploited for local privilege escalation (LPE) nssm-2.24 privilege escalation

In multi-tenant environments (VDI, Citrix, shared kiosks), a low-privilege user who finds NSSM 2.24 installed on the base image can escalate to SYSTEM and escape their session container. Look for nssm

Typical exploitation scenarios

has long been a staple for system administrators and developers on the Windows platform. Versions like 2.24 , released in the mid-2010s, are celebrated for their ability to turn any executable into a Windows service quickly. However, beneath its utilitarian veneer lies a dangerous attack vector: privilege escalation . Versions like 2

Or via registry (if direct sc fails):