Automated Tools

WinPEAS!

WinPEAS

LogoPEASS-ng/winPEAS at master ยท carlospolop/PEASS-ngGitHub
WinPEAS

winPEAS.bat does not support color. If winPEAS.exe does not show color, edit registry:

REG ADD HKCU\Console /v VirtualTerminalLevel /t REG_DWORD /d 1

Windows PrivEsc Checklist

LogoChecklist - Local Windows Privilege EscalationHackTricks
Windows PrivEsc Checklist

PowerUp

LogoPowerSploit/Privesc at master ยท PowerShellMafia/PowerSploitGitHub
PowerUp

JAWS

LogoGitHub - 411Hall/JAWS: JAWS - Just Another Windows (Enum) ScriptGitHub
JAWS

Windows Exploit Suggester

LogoGitHub - AonCyberLabs/Windows-Exploit-Suggester: This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on the target. It also notifies the user if there are public exploits and Metasploit modules available for the missing bulletins.GitHub
Windows Exploit Suggester

Metasploit Local Exploit Suggester

LogoMetasploit Local Exploit Suggester: Do Less, Get More! | Rapid7 BlogRapid7
Metasploit Local Exploit Suggester

In a Meterpreter shell:

meterpreter > run post/multi/recon/local_exploit_suggester

Seatbelt

LogoGitHub - GhostPack/Seatbelt: Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.GitHub
Seatbelt

SharpUp

LogoGitHub - GhostPack/SharpUp: SharpUp is a C# port of various PowerUp functionality.GitHub
SharpUp
PreviousManual EnumerationNextKernel Exploits

Last updated

Was this helpful?