What level of access is needed to use these techniques?

The user typically requires initial access to a Windows system as a standard user via a shell (CMD/PowerShell) or RDP to begin the enumeration and escalation process.

Is this skill safe to use on any system?

No. Many privilege escalation techniques, especially kernel exploits and service modifications, can cause system instability or downtime and should only be used in authorized testing environments.

Does this skill require specific external tools?

While it includes many native commands, it also references common security tools like WinPEAS, PowerUp, Seatbelt, and various exploit binaries for advanced techniques.

What is the primary focus of the Windows Privilege Escalation skill?

It provides a structured methodology for identifying and exploiting vulnerabilities that allow a standard user to gain higher privileges, such as Administrator or SYSTEM, on a Windows system.

Windows Privilege Escalation

Name: Windows Privilege Escalation
Author: zebbern

byzebbern

•

2,883

•

Seguridad y Pruebas

Provides systematic methodologies and commands for discovering and exploiting privilege escalation vulnerabilities on Windows systems.

This skill empowers security professionals and penetration testers with a comprehensive framework for escalating from standard user to Administrator or SYSTEM privileges in Windows environments. It covers essential techniques ranging from initial system enumeration and credential harvesting to advanced exploits like token impersonation and kernel vulnerabilities, facilitating thorough security audits and post-exploitation analysis during authorized engagements.

Características Principales

01Detailed service exploitation workflows for unquoted paths and weak permissions

02Comprehensive system, user, and network enumeration commands

032,883 GitHub stars

04Token impersonation guides including Potato-style attacks

05Kernel exploit identification using Windows Exploit Suggester and Watson

06Advanced credential harvesting from SAM, registry, and configuration files

Casos de Uso

01Internal security auditing to harden Windows configurations

02Authorized penetration testing and Red Team engagements

03Educational research into Windows security models and post-exploitation

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add zebbern/claude-code-guide windows-privilege-escalation

For use in Claude.ai and ChatGPT

Download Skill