NCAE Mapping Hub Authoritative cross-reference for DCWF, NCAE Knowledge Units, O*NET, and the EWU Cyber Operations program

Security+ · 2.0 Threats

Privilege escalation

Moving from a low-privilege account (e.g., `www-data`) to a higher one (e.g., `root`). Vertical privesc = gaining more privileges on the same system. Horizontal privesc = accessing another user at the same privilege level.

How this shows up at NCAE

Red team gets an initial foothold as a low-privilege user (web shell, default creds), then uses SUID binaries, sudo rules, or kernel exploits to become root. NCAE videos 9-14 cover this from the red-team side.