A Powershell Privilege Escalation Enumeration Script.
This script automates most of what is detailed in my Windows Privilege Escalation guide here.
To run the quick standard checks.
.\WindowsEnum.ps1Directly from CMD
powershell -nologo -executionpolicy bypass -file WindowsEnum.ps1
Extended checks will search for config files, various interesting files, and passwords in files and the registry, etc. It will take some time so be patient.
.\WindowsEnum.ps1 extendedpowershell -nologo -executionpolicy bypass -file WindowsEnum.ps1 extended