Thick Client Pentesting

As of Now added references will be adding clear details soon

Thick client applications, called desktop applications, are full-featured computers that are connected to a network. Unlike thin clients, which lack hard drives and other features, thick clients are functional whether they are connected to a network or not.
While a thick client is fully functional without a network connection, it is only a “client” when it is connected to a server. The server may provide the thick client with programs and files that are not stored on the local machine’s hard drive
References
Thick Client Penetration Testing Approach | Payatu
Payatu
Thick Client Penetration Testing Methodology
CyberArk
An introduction to privileged file operation abuse on Windows - Almond Offensive Security Blog
From thick client exploitation to becoming Kubernetes cluster Admin — The story of a fun bug we…
Medium
More Thick Client Fun!
Medium
thick client proxying
summitt/Burp-Non-HTTP-Extension | ★1218
jitpack
https://owasp.org/www-pdf-archive/Thick_Client_%28In%29Security_-_Neelay_S_Shah_-_Mar_24.pdf
Introduction to Hacking Thick Clients: Part 1 - the GUI
NetSPI
Build a TCP proxy in Python (part 1/3)
Medium
​
​
​
​
​

Cloud Security

Architecture

Last modified 1yr ago