Skip to content
Windows batch script that finds misconfiguration issues which can lead to privilege escalation.
Branch: master
Clone or download
Latest commit 23972d0 Feb 2, 2019
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
.gitignore Create .gitignore Jan 18, 2016
README.md Update README.md Nov 12, 2018
privesc.bat
privesc.ps1 Update privesc.ps1 Feb 1, 2019

README.md

Privesc

Windows batch and PowerShell script that finds misconfiguration issues which can lead to privilege escalation.
Batch script uses accesschk.exe from Sysinternals. This executable is mandatory.
Few checks also use Listdlls.exe and pipelist.exe from Sysinternals. Those executables are optional.

Usage:

  Edit script and set "mode" and "long" parameters:
  - mode - parameter takes two values "full" or "lhf". "lhf" tries to find only Low Hanging Fruits. "full" shows full output of all commands.
  - long - parameter takes two values "yes" or "no". If "yes" is configured then time consuming checks are also done.

  Run batch script:
  privesc.bat "Users group name" ["Next group name"]

Example usage:

  privesc.bat Everyone Users "Authenticated Users"
You can’t perform that action at this time.