From 49939fc826dfce687b023730eabe33364abaf12e Mon Sep 17 00:00:00 2001 From: pe3zx Date: Sun, 22 Aug 2021 16:06:40 +0700 Subject: [PATCH] Add: rxwx/spoolsystem to Privilege Escalation section --- Offensive.md | 11 ++++++----- 1 file changed, 6 insertions(+), 5 deletions(-) diff --git a/Offensive.md b/Offensive.md index 96e87ee..c10d106 100644 --- a/Offensive.md +++ b/Offensive.md @@ -808,9 +808,7 @@ Some tools can be categorized in more than one category. But because the current 411Hall/JAWS - JAWS is PowerShell script designed to help penetration testers (and CTFers) quickly identify potential - privilege escalation vectors on Windows systems. It is written using PowerShell 2.0 so 'should' run on every - Windows version since Windows 7. + JAWS is PowerShell script designed to help penetration testers (and CTFers) quickly identify potential privilege escalation vectors on Windows systems. It is written using PowerShell 2.0 so 'should' run on every Windows version since Windows 7. antonioCoco/RemotePotato0 @@ -859,8 +857,7 @@ Some tools can be categorized in more than one category. But because the current hlldz/dazzleUP - A tool that detects the privilege escalation vulnerabilities caused by misconfigurations and missing updates - in the Windows operating systems. + A tool that detects the privilege escalation vulnerabilities caused by misconfigurations and missing updates in the Windows operating systems. itm4n/PrivescCheck @@ -870,6 +867,10 @@ Some tools can be categorized in more than one category. But because the current liamg/traitor Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins + + rxwx/spoolsystem + Print Spooler Named Pipe Impersonation for Cobalt Strike + sailay1996/delete2SYSTEM Weaponizing for Arbitrary Files/Directories Delete bugs to Get NT AUTHORITY\SYSTEM