Automated enumeration script
Windows-exploit-suggester.py
This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on the target.
windowsEnum.bat by Azmatt
Windows Enumeration Batch Script
WindowsEnum.ps1 by Absolomb
A Powershell Privilege Escalation Enumeration Script.
JAWS - Just Another Windows (Enum) Script
JAWS is PowerShell script designed to help penetration testers (and CTFers) quickly identify potential privilege escalation vectors on Windows systems. It is written using PowerShell 2.0 so 'should' run on every Windows version since Windows 7.
windows-privesc-check by pentestmonkey
Find misconfigurations that could allow local unprivileged users to escalate privileges to other users or to access local apps (e.g. databases
wmic_info.bat by FuzzySecurity
use WMIC to extract the following information: processes, services, user accounts, user groups, network interfaces, Hard Drive information, Network Share information, installed Windows patches, programs that run at startup, list of installed software, information about the operating system and timezone.
PowerUp
PowerUp is an extremely useful script for quickly checking for obvious paths to privilege escalation on Windows. It is not an exploit itself, but it can reveal vulnerabilities such as administrator password stored in registry and similar.
Last updated