What enumeration tools does it support?

The skill provides guidance and command syntax for industry-standard tools like WinPEAS, PowerUp, Seatbelt, and manual PowerShell enumeration.

What is the Windows Privilege Escalation skill?

It's a specialized capability for Claude Code that provides expert guidance and command methodologies for elevating user permissions to Administrative or SYSTEM level on Windows platforms.

Can it help with modern Windows versions?

Yes, it includes techniques relevant to modern Windows 10, 11, and Server versions, such as PrintSpoofer and GodPotato for token impersonation.

Is this skill intended for malicious use?

No, this skill is designed for authorized security auditors, penetration testers, and developers to identify, test, and mitigate security vulnerabilities in Windows environments.

Does this skill provide automated exploits?

It provides the specific command patterns and step-by-step methodologies for various techniques like DLL hijacking and token manipulation, which can be interpreted and executed by security professionals.

Windows Privilege Escalation Expert

Name: Windows Privilege Escalation Expert
Author: trilwu

bytrilwu

보안 및 테스팅

Provides expert guidance and automated command patterns for escalating privileges on Windows systems during security audits.

소개

This skill transforms Claude Code into a specialized security assistant for Windows post-exploitation and privilege escalation. It provides a comprehensive methodology for identifying and exploiting system misconfigurations, service vulnerabilities, DLL hijacking opportunities, and registry flaws. Designed for security professionals and penetration testers, it offers standardized command-line patterns for enumeration, token manipulation (Juicy/Print/GodPotato), UAC bypasses, and credential harvesting, enabling efficient pathfinding to SYSTEM-level access in various Windows environments.

주요 기능

Advanced Credential Access and SAM/LSASS dumping methodologies
Modern Token Manipulation techniques (JuicyPotato, PrintSpoofer, GodPotato)
Service-based exploitation patterns (Unquoted Paths, Weak Permissions)
Comprehensive system and network enumeration workflows
Registry-based escalation paths (AlwaysInstallElevated, Autorun)
0 GitHub stars

사용 사례

Educational walkthroughs and methodology practice for security researchers in Lab/CTF environments
Performing Red Team operations or Authorized Penetration Tests on Windows environments
Conducting security audits to identify and remediate privilege escalation risks in enterprise builds

소개

주요 기능

Advanced Credential Access and SAM/LSASS dumping methodologies
Modern Token Manipulation techniques (JuicyPotato, PrintSpoofer, GodPotato)
Service-based exploitation patterns (Unquoted Paths, Weak Permissions)
Comprehensive system and network enumeration workflows
Registry-based escalation paths (AlwaysInstallElevated, Autorun)
0 GitHub stars

사용 사례

Educational walkthroughs and methodology practice for security researchers in Lab/CTF environments
Performing Red Team operations or Authorized Penetration Tests on Windows environments
Conducting security audits to identify and remediate privilege escalation risks in enterprise builds