Does this skill provide automated exploitation scripts?

It provides the methodology, specific commands, and logic required to perform exploitation, but requires manual execution and verification by the user.

Which Windows versions are covered by this skill?

The skill covers a wide range of versions, from legacy Windows 7/Server 2008 to modern Windows 10 and Server 2019/2022 environments.

Is it safe to run these commands on live production systems?

While many enumeration commands are safe, certain techniques like kernel exploits or service restarts can cause instability and should only be performed with proper authorization.

Do I need special tools to use these techniques?

The skill utilizes a mix of built-in Windows commands (PowerShell/CMD) and popular third-party security tools like WinPEAS, Mimikatz, and PrintSpoofer.

What is the primary purpose of the Windows Privilege Escalation skill?

It provides a systematic approach for security professionals to identify and exploit privilege escalation vectors on Windows systems during authorized engagements.

Windows Privilege Escalation Guide

Name: Windows Privilege Escalation Guide
Author: claudiodearaujo

byclaudiodearaujo

보안 및 테스팅

Provides systematic methodologies for discovering and exploiting privilege escalation vulnerabilities on Windows systems during security audits.

소개

The Windows Privilege Escalation skill is a specialized resource for penetration testers and security researchers. It provides a structured workflow for elevating privileges from standard user accounts to Administrator or SYSTEM. By leveraging deep-dive enumeration, credential harvesting from SAM/SYSTEM hives, and service exploitation techniques like unquoted paths and weak permissions, this skill enables users to identify critical security gaps. It also includes modern exploit patterns such as Potato attacks, HiveNightmare, and kernel-level vulnerability assessment to ensure comprehensive coverage of the Windows security model.

주요 기능

Comprehensive system, user, and network enumeration commands
Kernel vulnerability identification and exploit reference guide
Token impersonation and 'Potato' attack methodology
Advanced credential harvesting from registry, config files, and SAM hives
0 GitHub stars
Service exploitation workflows for unquoted paths and weak permissions

사용 사례

Auditing Windows systems for stored credentials and insecure service permissions
Conducting authorized penetration testing on Windows environments
Identifying and remediating system misconfigurations that lead to privilege escalation

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add claudiodearaujo/sistema-de-narra-o-de-livro-front windows-privilege-escalation

For use in Claude.ai and ChatGPT

Download Skill

GitHub

소개