Is this skill intended for beginners?

While it provides clear command examples, it is best suited for security professionals who understand the risks and ethical requirements of penetration testing.

What operating systems does this skill cover?

This skill provides comprehensive techniques for both Linux (including sudo, cron, and SUID abuse) and Windows environments (including Active Directory and local service exploits).

Does this skill assist with Active Directory audits?

Yes, it includes specialized techniques for AD environments, such as Kerberoasting, AS-REP Roasting, and DCSync attacks for identifying domain-level risks.

Which security tools are referenced in this skill?

The skill includes specific guidance and syntax for industry-standard tools such as Mimikatz, Impacket, Rubeus, PowerUp, and Responder.

Security Privilege Escalation Techniques

Name: Security Privilege Escalation Techniques
Author: claudiodearaujo

byclaudiodearaujo

安全与测试

Provides comprehensive guidance and command syntax for identifying and exploiting privilege escalation vulnerabilities during authorized security assessments.

关于

This skill equips security professionals and penetration testers with a structured library of privilege escalation techniques for both Linux and Windows environments. It covers critical areas such as misconfigured sudo permissions, service abuse, token impersonation, and complex Active Directory attack vectors like Kerberoasting and Golden Tickets. By providing immediate access to proven methodologies and industry-standard tool syntax—including Mimikatz, Rubeus, and Impacket—it streamlines the post-exploitation phase of a security audit, helping teams identify, demonstrate, and eventually remediate path-to-root vulnerabilities.

主要功能

Advanced Active Directory attacks like Kerberoasting and AS-REP Roasting
Credential harvesting techniques and NTLM relay guidance
Linux escalation via sudo, cron jobs, and capabilities
Tool-specific command references for Mimikatz, Impacket, and Rubeus
Windows local escalation including token impersonation and service abuse
0 GitHub stars

使用场景

Training security teams on common lateral movement and escalation paths
Executing authorized penetration testing and red team engagements
Performing internal security audits to identify OS misconfigurations

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add claudiodearaujo/izacenter privilege-escalation-methods

For use in Claude.ai and ChatGPT

Download Skill

GitHub

关于