PrivEsc-MindMap
Priv2Admin
PrivEsc-MindMap | Priv2Admin | |
---|---|---|
1 | 7 | |
13 | 1,734 | |
- | - | |
10.0 | 1.2 | |
over 3 years ago | about 1 year ago | |
- | - |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
PrivEsc-MindMap
Priv2Admin
- Passed with 90 points (incl report)
-
I passed with 100 points on second attempt AMA
things like checking whoami /priv + https://github.com/gtworek/Priv2Admin
- GitHub - gtworek/Priv2Admin: Exploitation paths allowing you to (mis)use the Windows Privileges to elevate your rights within the OS.
- gtworek/Priv2Admin: Exploitation paths allowing you to (mis)use the Windows Privileges to elevate your rights within the OS. Handy reference for technical defenders also.
- Token impersonations
What are some alternatives?
pspy - Monitor linux processes without root permissions
juicy-potato - A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts to NT AUTHORITY\SYSTEM.
Seatbelt - Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.
PEASS-ng - PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
linux-smart-enumeration - Linux enumeration tool for pentesting and CTFs with verbosity levels
OSCP-Priv-Esc - Mind maps / flow charts to help with privilege escalation on the OSCP.
OSCP-Bash-Scripts - Some handy bash scripts I used for the OSCP
AutoRecon - AutoRecon is a multi-threaded network reconnaissance tool which performs automated enumeration of services.