Skip to content
/ SweetPotato Public

Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019

1.6k stars 217 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

CCob/SweetPotato

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

27 Commits
.github
.github
 
 
Com
Com
 
 
Properties
Properties
 
 
Security
Security
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
12345678-1234-abcd-ef00-0123456789ab_1.0.cs
12345678-1234-abcd-ef00-0123456789ab_1.0.cs
 
 
EfsRpc.cs
EfsRpc.cs
 
 
FodyWeavers.xml
FodyWeavers.xml
 
 
FodyWeavers.xsd
FodyWeavers.xsd
 
 
LocalNegotiator.cs
LocalNegotiator.cs
 
 
ObjRef.cs
ObjRef.cs
 
 
Options.cs
Options.cs
 
 
PotatoAPI.cs
PotatoAPI.cs
 
 
PrintSpoofer.cs
PrintSpoofer.cs
 
 
Program.cs
Program.cs
 
 
README.md
README.md
 
 
StorageTrigger.cs
StorageTrigger.cs
 
 
SweetPotato.csproj
SweetPotato.csproj
 
 
SweetPotato.sln
SweetPotato.sln
 
 
app.config
app.config
 
 
app.manifest
app.manifest
 
 
df1941c5-fe89-4e79-bf10-463657acf44d_1.0.cs
df1941c5-fe89-4e79-bf10-463657acf44d_1.0.cs
 
 
packages.config
packages.config
 
 

Repository files navigation

SweetPotato

A collection of various native Windows privilege escalation techniques from service accounts to SYSTEM

SweetPotato by @_EthicalChaos_
  Orignal RottenPotato code and exploit by @foxglovesec
  Weaponized JuciyPotato by @decoder_it and @Guitro along with BITS WinRM discovery
  PrintSpoofer discovery and original exploit by @itm4n
  EfsRpc built on EfsPotato by @zcgonvh and PetitPotam by @topotam
  -c, --clsid=VALUE          CLSID (default BITS:
                               4991D34B-80A1-4291-83B6-3328366B9097)
  -m, --method=VALUE         Auto,User,Thread (default Auto)
  -p, --prog=VALUE           Program to launch (default cmd.exe)
  -a, --args=VALUE           Arguments for program (default null)
  -e, --exploit=VALUE        Exploit mode
                               [DCOM|WinRM|EfsRpc|PrintSpoofer(default)]
  -l, --listenPort=VALUE     COM server listen port (default 6666)
  -h, --help                 Display this help

About

Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019

Resources

Readme
Activity

Stars

1.6k stars

Watchers

17 watching

Forks

217 forks
Report repository

Releases

No releases published

Sponsor this project

 
Learn more about GitHub Sponsors

Packages

No packages published

Contributors 3

  •  
  •  
  •  

Languages