Methodology > Tools

Overview

Look for quick wins with Kernel Exploits using Windows Exploit Suggester or the Metasploit Local Exploit Suggester.

If the machine is fully patched, look for misconfigurations next using PowerUp or winPEAS

If those don't even work try using other tools, Watson, Sherlock, JAWS, Seabelt, etc.

The tools are always changing but the methodology and mindset are always the same. You can do everything that the tools are doing by yourself manually, so there shouldn't be any excuses. The box was made vulnerable so there must be a way to pwn it.

PreviousInitial Enumeration Automated NextKernel Exploits

Last updated 11 months ago

Was this helpful?