Automated Tools

WinPEAS!

WinPEAS

PEASS-ng/winPEAS at master · carlospolop/PEASS-ngGitHub

WinPEAS

winPEAS.bat does not support color. If winPEAS.exe does not show color, edit registry:

REG ADD HKCU\Console /v VirtualTerminalLevel /t REG_DWORD /d 1

Windows PrivEsc Checklist

Checklist - Local Windows Privilege EscalationHackTricks

Windows PrivEsc Checklist

PowerUp

PowerSploit/Privesc at master · PowerShellMafia/PowerSploitGitHub

PowerUp

JAWS

GitHub - 411Hall/JAWS: JAWS - Just Another Windows (Enum) ScriptGitHub

JAWS

Windows Exploit Suggester

GitHub - AonCyberLabs/Windows-Exploit-Suggester: This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on the target. It also notifies the user if there are public exploits and Metasploit modules available for the missing bulletins.GitHub

Windows Exploit Suggester

Metasploit Local Exploit Suggester

Metasploit Local Exploit Suggester: Do Less, Get More! | Rapid7 BlogRapid7

Metasploit Local Exploit Suggester

In a Meterpreter shell:

meterpreter > run post/multi/recon/local_exploit_suggester

Seatbelt

GitHub - GhostPack/Seatbelt: Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.GitHub

Seatbelt

SharpUp

GitHub - GhostPack/SharpUp: SharpUp is a C# port of various PowerUp functionality.GitHub

SharpUp