- Begin by checking your user and your groups
whoaminet user <username> - run winPEAS with searchfast and cmd
searchfast Avoid sleeping while searching files (notable amount of resources)cmd Obtain wifi, cred manager and clipboard information executing CMD commands - Run seatbelt and other scripts in windows privesc directory
- If scripts fail due to antivirus or other unknown reasons, execute the commands manually:
Blake Balick-Schreiber Andross
Andross
/ windows-priv-esc.md
Last active
October 20, 2022 20:55
Windows PrivEsc Notes for OSCP Tib3rius Udemy course
Andross
/ gist:4650cb94c1816f31cfea30fc440d3a4a
Created
June 22, 2019 21:15
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| ### Keybase proof | |
| I hereby claim: | |
| * I am andross on github. | |
| * I am siryarbles (https://keybase.io/siryarbles) on keybase. | |
| * I have a public key ASDYovC8VsFZvvdD2Xs2U5TS7xTTGHpM59RD8N2GCV9rxAo | |
| To claim this, I am signing this object: |