Does this skill provide automated exploitation scripts?

It provides the methodology, specific commands, and logic required to perform exploitation, but requires manual execution and verification by the user.

Which Windows versions are covered by this skill?

The skill covers a wide range of versions, from legacy Windows 7/Server 2008 to modern Windows 10 and Server 2019/2022 environments.

Is it safe to run these commands on live production systems?

While many enumeration commands are safe, certain techniques like kernel exploits or service restarts can cause instability and should only be performed with proper authorization.

Do I need special tools to use these techniques?

The skill utilizes a mix of built-in Windows commands (PowerShell/CMD) and popular third-party security tools like WinPEAS, Mimikatz, and PrintSpoofer.

What is the primary purpose of the Windows Privilege Escalation skill?

It provides a systematic approach for security professionals to identify and exploit privilege escalation vectors on Windows systems during authorized engagements.

Windows Privilege Escalation Guide

Name: Windows Privilege Escalation Guide
Author: claudiodearaujo

byclaudiodearaujo

0•

安全与测试

Provides systematic methodologies for discovering and exploiting privilege escalation vulnerabilities on Windows systems during security audits.

The Windows Privilege Escalation skill is a specialized resource for penetration testers and security researchers. It provides a structured workflow for elevating privileges from standard user accounts to Administrator or SYSTEM. By leveraging deep-dive enumeration, credential harvesting from SAM/SYSTEM hives, and service exploitation techniques like unquoted paths and weak permissions, this skill enables users to identify critical security gaps. It also includes modern exploit patterns such as Potato attacks, HiveNightmare, and kernel-level vulnerability assessment to ensure comprehensive coverage of the Windows security model.

主要功能

01Comprehensive system, user, and network enumeration commands

02Kernel vulnerability identification and exploit reference guide

03Token impersonation and 'Potato' attack methodology

04Advanced credential harvesting from registry, config files, and SAM hives

050 GitHub stars

06Service exploitation workflows for unquoted paths and weak permissions

使用场景

01Auditing Windows systems for stored credentials and insecure service permissions

02Conducting authorized penetration testing on Windows environments

03Identifying and remediating system misconfigurations that lead to privilege escalation

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add claudiodearaujo/sistema-de-narra-o-de-livro-front windows-privilege-escalation

For use in Claude.ai and ChatGPT

主要功能

01Comprehensive system, user, and network enumeration commands

02Kernel vulnerability identification and exploit reference guide

03Token impersonation and 'Potato' attack methodology

04Advanced credential harvesting from registry, config files, and SAM hives

050 GitHub stars

06Service exploitation workflows for unquoted paths and weak permissions

使用场景

01Auditing Windows systems for stored credentials and insecure service permissions

02Conducting authorized penetration testing on Windows environments

03Identifying and remediating system misconfigurations that lead to privilege escalation

What are Skills?·How to Install

Install with 🐟 Skill.Fish

npx skillfish add claudiodearaujo/sistema-de-narra-o-de-livro-front windows-privilege-escalation

For use in Claude.ai and ChatGPT