frizb/Windows-Privilege-Escalation external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

frizb/Windows-Privilege-Escalation

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/frizb/Windows-Privilege-Escalation)

Close

frizb / Windows-Privilege-EscalationView on GitHubMore

• External links
• Readme badge

Windows Privilege Escalation Techniques and Scripts

☆952Mar 25, 2020Updated 5 years ago

Alternatives and similar repositories for Windows-Privilege-Escalation

Users that are interested in Windows-Privilege-Escalation are comparing it to the libraries listed below

• ihack4falafel / OSCP

  View on GitHub
  Collection of things made during my OSCP journey
  ☆955Feb 24, 2022Updated 4 years ago
• pentestmonkey / windows-privesc-check

  View on GitHub
  Standalone Executable to Check for Simple Privilege Escalation Vectors on Windows Systems
  ☆1,504Aug 1, 2023Updated 2 years ago
• enjoiz / Privesc

  View on GitHub
  Windows batch script that finds misconfiguration issues which can lead to privilege escalation.
  ☆673Dec 1, 2024Updated last year
• rasta-mouse / Watson

  View on GitHub
  Enumerate missing KBs and suggest exploits for useful Privilege Escalation vulnerabilities
  ☆1,659Nov 28, 2020Updated 5 years ago
• gladiatx0r / Powerless

  View on GitHub
  Windows privilege escalation (enumeration) script designed with OSCP labs (legacy Windows) in mind
  ☆482Aug 4, 2020Updated 5 years ago
• antonioCoco / RoguePotato

  View on GitHub
  Another Windows Local Privilege Escalation from Service Account to System
  ☆1,155Jan 9, 2021Updated 5 years ago
• rasta-mouse / Sherlock

  View on GitHub
  PowerShell script to quickly find missing software patches for local privilege escalation vulnerabilities.
  ☆1,992Oct 10, 2018Updated 7 years ago
• 411Hall / JAWS

  View on GitHub
  JAWS - Just Another Windows (Enum) Script
  ☆1,919Apr 19, 2021Updated 4 years ago
• rewardone / OSCPRepo

  View on GitHub
  A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study mater…
  ☆2,727Jun 22, 2020Updated 5 years ago
• S3cur3Th1sSh1t / WinPwn

  View on GitHub
  Automation for internal Windows Penetrationtest / AD-Security
  ☆3,644Aug 28, 2025Updated 6 months ago
• breenmachine / RottenPotatoNG

  View on GitHub
  New version of RottenPotato as a C++ DLL and standalone C++ binary - no need for meterpreter or other tools.
  ☆968Dec 29, 2017Updated 8 years ago
• AlessandroZ / BeRoot

  View on GitHub
  Privilege Escalation Project - Windows / Linux / Mac
  ☆2,602Oct 4, 2024Updated last year
• Kevin-Robertson / Invoke-TheHash

  View on GitHub
  PowerShell Pass The Hash Utils
  ☆1,724Dec 9, 2018Updated 7 years ago
• itm4n / PrivescCheck

  View on GitHub
  Privilege Escalation Enumeration Script for Windows
  ☆3,708Jan 30, 2026Updated last month
• mantvydasb / RedTeaming-Tactics-and-Techniques

  View on GitHub
  Red Teaming Tactics and Techniques
  ☆4,495Aug 22, 2024Updated last year
• ohpe / juicy-potato

  View on GitHub
  A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts t…
  ☆2,732Dec 18, 2021Updated 4 years ago
• emilyanncr / Windows-Post-Exploitation

  View on GitHub
  Windows post-exploitation tools, resources, techniques and commands to use during post-exploitation phase of penetration test. Contribut…
  ☆544Sep 7, 2025Updated 5 months ago
• codingo / Reconnoitre

  View on GitHub
  A security tool for multithreaded information gathering and service enumeration whilst building directory structures to store results, al…
  ☆2,184Dec 11, 2022Updated 3 years ago
• gdedrouas / Exchange-AD-Privesc

  View on GitHub
  Exchange privilege escalations to Active Directory
  ☆806Apr 23, 2023Updated 2 years ago
• frizb / Powershell-Cheatsheet

  View on GitHub
  Hand list of Powershell commands frequently used during penetration tests
  ☆15Oct 14, 2018Updated 7 years ago
• strozfriedberg / Windows-Exploit-Suggester

  View on GitHub
  This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on th…
  ☆4,173May 11, 2023Updated 2 years ago
• bitsadmin / wesng

  View on GitHub
  Windows Exploit Suggester - Next Generation
  ☆4,766Updated this week
• CCob / SweetPotato

  View on GitHub
  Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019
  ☆1,811Sep 4, 2024Updated last year
• Hackplayers / evil-winrm

  View on GitHub
  The ultimate WinRM shell for hacking/pentesting
  ☆5,260Feb 20, 2026Updated last week
• frizb / Linux-Privilege-Escalation

  View on GitHub
  Tips and Tricks for Linux Priv Escalation
  ☆225Sep 5, 2021Updated 4 years ago
• foxglovesec / RottenPotato

  View on GitHub
  RottenPotato local privilege escalation from service account to SYSTEM
  ☆691Dec 29, 2017Updated 8 years ago
• sagishahar-zz / lpeworkshop

  View on GitHub
  Windows / Linux Local Privilege Escalation Workshop
  ☆1,003Jan 15, 2019Updated 7 years ago
• antonioCoco / RogueWinRM

  View on GitHub
  Windows Local Privilege Escalation from Service Account to System
  ☆914Feb 23, 2020Updated 6 years ago
• hausec / ADAPE-Script

  View on GitHub
  Active Directory Assessment and Privilege Escalation Script
  ☆1,132Dec 7, 2022Updated 3 years ago
• samratashok / nishang

  View on GitHub
  Nishang - Offensive PowerShell for red team, penetration testing and offensive security.
  ☆9,779Apr 25, 2024Updated last year
• leechristensen / SpoolSample

  View on GitHub
  PoC tool to coerce Windows hosts authenticate to other machines via the MS-RPRN RPC interface. This is possible via other protocols as w…
  ☆1,090May 29, 2024Updated last year
• fox-it / aclpwn.py

  View on GitHub
  Active Directory ACL exploitation with BloodHound
  ☆755Nov 18, 2021Updated 4 years ago
• abatchy17 / WindowsExploits

  View on GitHub
  Windows exploits, mostly precompiled. Not being updated. Check https://github.com/SecWiki/windows-kernel-exploits instead.
  ☆1,917Sep 7, 2020Updated 5 years ago
• antonioCoco / JuicyPotatoNG

  View on GitHub
  Another Windows Local Privilege Escalation from Service Account to System
  ☆939Nov 12, 2022Updated 3 years ago
• lucyoa / kernel-exploits

  View on GitHub
  ☆1,190Apr 23, 2017Updated 8 years ago
• bluscreenofjeff / AggressorScripts

  View on GitHub
  Aggressor scripts for use with Cobalt Strike 3.0+
  ☆885Sep 9, 2022Updated 3 years ago
• hausec / Bloodhound-Custom-Queries

  View on GitHub
  Custom Query list for the Bloodhound GUI based off my cheatsheet
  ☆837Oct 29, 2025Updated 4 months ago
• OlivierLaflamme / Cheatsheet-God

  View on GitHub
  Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
  ☆5,460Dec 12, 2024Updated last year
• diego-treitos / linux-smart-enumeration

  View on GitHub
  Linux enumeration tool for pentesting and CTFs with verbosity levels
  ☆3,855Dec 25, 2023Updated 2 years ago