: Used nssm-2.24 to create malicious services (like sysmon ) to launch tunneling tools like Ngrok.
NSSM (Non-Sucking Service Manager) is a service manager for Windows that provides a more reliable and efficient way to manage services compared to the built-in Windows Service Manager. It is commonly used in production environments due to its flexibility and configurability. However, like any complex software, NSSM is not immune to security vulnerabilities. This review focuses on a privilege escalation vulnerability identified in NSSM version 2.24. nssm-2.24 privilege escalation