Abstract: Techniques described and suggested herein include various systems and methods for detecting privilege escalation vulnerabilities. A detection service may determine one or more resources of a service or application the computing resource service provider to test. The detection service may determine a set of message digests corresponding to responses to requests to access the resource of the service or application. A subset of the set of message digests associated with an identifier may be compared to determine whether an entity associated with one of the subset of message digests is able to exceed a set of privileges attributed to the entity.

Abstract: An image is selected responsive to receiving an access request for access to protected content. An access code is assigned to the image, and the image is partitioned into a plurality of image tiles. Each image tile comprises a code segment, which is a part of the access code. The image tiles are then scrambled into a scrambled version of the image and displayed to a user. The user rearranges the scrambled version of the image to reassemble the image, identifies a correct sequence for the code segments, and then enters the code segments in the correct sequence as a codeword. The codeword is matched against the assigned access code. If they match, the user is granted access to the protected content. Otherwise the person is denied access to the protected content.

Abstract: A method for detecting a privilege escalation vulnerability comprises selecting an address identifier of a web address with secure content. A first response to the address identifier being submitted as a first user having a first security clearance that is not sufficient to access the content is received. If not, then a second response to the address identifier submitted as a second user having a second security clearance that is sufficient to access the content is received. If a comparison of the first response to the second response satisfies a second vulnerability condition, then a privilege escalation vulnerability is reported. If not, then a first term frequency for the first response and a second term frequency for the second response are determined and compared. If the comparison of the first term frequency and the second term frequency satisfies a third vulnerability condition, then a privilege escalation is reported.

Abstract: A method for detecting a privilege escalation vulnerability comprises selecting an address identifier of a web address with secure content. A first response to the address identifier being submitted as a first user having a first security clearance that is not sufficient to access the content is received. If not, then a second response to the address identifier submitted as a second user having a second security clearance that is sufficient to access the content is received. If a comparison of the first response to the second response satisfies a second vulnerability condition, then a privilege escalation vulnerability is reported. If not, then a first term frequency for the first response and a second term frequency for the second response are determined and compared. If the comparison of the first term frequency and the second term frequency satisfies a third vulnerability condition, then a privilege escalation is reported.