Possible privilege escalation vectors - Auto-enumeration scripts

Programs that automate vulnerability searching and display our possible vectors for privilege escalation in a user-friendly way.

These auto-enumeration scripts will run many commands known for identifying vulnerabilities and create a lot of "noise" that may trigger anti-virus or security monitoring software that looks for these types of events. This may prevent the scripts from running or even trigger an alarm that the system has been compromised. In some instances, we may want to do a manual enumeration instead of running scripts.

PEASS

For Windows, Linux or Mac

LogoGitHub - carlospolop/PEASS-ng: PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)GitHub
PEASS-ng

LinEnum

For Linux

LogoGitHub - rebootuser/LinEnum: Scripted Local Linux Enumeration & Privilege Escalation ChecksGitHub

LinuxPrivChecker

For Linux

LogoGitHub - sleventyeleven/linuxprivchecker: linuxprivchecker.py -- a Linux Privilege Escalation Check ScriptGitHub

Seatbelt

For Windows

LogoGitHub - GhostPack/Seatbelt: Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.GitHub

JAWS (Just Another Windows(Enum) Script

For Windows

LogoGitHub - 411Hall/JAWS: JAWS - Just Another Windows (Enum) ScriptGitHub

Last updated