Escalating privileges

Once a machine is compromised, any access obtained is usually with low privileges. As the idea of any pen test is to simulate a real-world attack, this includes looking for sensitive information, which is normally kept on restricted servers; the tester would need to find ways to escalate their privileges. In a Windows Active Directory (AD) environment, this would mean getting access to a Domain Admin account.