SweetPotato

A collection of various native Windows privilege escalation techniques from service accounts to SYSTEM

SweetPotato by @_EthicalChaos_
  Orignal RottenPotato code and exploit by @foxglovesec
  Weaponized JuciyPotato by @decoder_it and @Guitro along with BITS WinRM discovery
  PrintSpoofer discovery and original exploit by @itm4n
  EfsRpc built on EfsPotato by @zcgonvh and PetitPotam by @topotam
  -c, --clsid=VALUE          CLSID (default BITS:
                               4991D34B-80A1-4291-83B6-3328366B9097)
  -m, --method=VALUE         Auto,User,Thread (default Auto)
  -p, --prog=VALUE           Program to launch (default cmd.exe)
  -a, --args=VALUE           Arguments for program (default null)
  -e, --exploit=VALUE        Exploit mode
                               [DCOM|WinRM|EfsRpc|PrintSpoofer(default)]
  -l, --listenPort=VALUE     COM server listen port (default 6666)
  -h, --help                 Display this help

Name	Name	Last commit message	Last commit date
Latest commit CCob Create FUNDING.yml Sep 4, 2024 288ceb4 · Sep 4, 2024 History 27 Commits
.github	.github	Create FUNDING.yml	Sep 4, 2024
Com	Com	Initial commit	Apr 12, 2020
Properties	Properties	Initial commit	Apr 12, 2020
Security	Security	Initial support for print spooler privesc	May 11, 2020
.gitattributes	.gitattributes	Initial commit	Apr 12, 2020
.gitignore	.gitignore	Initial commit	Apr 12, 2020
12345678-1234-abcd-ef00-0123456789ab_1.0.cs	12345678-1234-abcd-ef00-0123456789ab_1.0.cs	Initial support for print spooler privesc	May 11, 2020
EfsRpc.cs	EfsRpc.cs	Added fallback to ncacn_np for EfsRpc. This was required to work on W…	May 19, 2022
FodyWeavers.xml	FodyWeavers.xml	NtApiDotNet now an external lib with Fody.Costura	May 13, 2020
FodyWeavers.xsd	FodyWeavers.xsd	NtApiDotNet now an external lib with Fody.Costura	May 13, 2020
LocalNegotiator.cs	LocalNegotiator.cs	Initial support for print spooler privesc	May 11, 2020
ObjRef.cs	ObjRef.cs	Initial support for print spooler privesc	May 11, 2020
Options.cs	Options.cs	Initial support for print spooler privesc	May 11, 2020
PotatoAPI.cs	PotatoAPI.cs	Added EfsRpc method (aka PetitPotam)	Aug 19, 2021
PrintSpoofer.cs	PrintSpoofer.cs	Additional logging and typo fixes	May 12, 2020
Program.cs	Program.cs	Sync of program help and README.md.	May 19, 2022
README.md	README.md	Merge branch 'master' into readme_efsrpc_update	May 19, 2022
StorageTrigger.cs	StorageTrigger.cs	Initial support for print spooler privesc	May 11, 2020
SweetPotato.csproj	SweetPotato.csproj	Changed build target from x86 to Any as x86 messed up the RPC named p…	May 19, 2022
SweetPotato.sln	SweetPotato.sln	Removed seperate NtApiDotNet instance and now use dnMerge for assembl…	Aug 20, 2021
app.config	app.config	Removed seperate NtApiDotNet instance and now use dnMerge for assembl…	Aug 20, 2021
app.manifest	app.manifest	Initial commit	Apr 12, 2020
df1941c5-fe89-4e79-bf10-463657acf44d_1.0.cs	df1941c5-fe89-4e79-bf10-463657acf44d_1.0.cs	Added EfsRpc method (aka PetitPotam)	Aug 19, 2021
packages.config	packages.config	Removed seperate NtApiDotNet instance and now use dnMerge for assembl…	Aug 20, 2021

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

SweetPotato

A collection of various native Windows privilege escalation techniques from service accounts to SYSTEM

About

Releases

Sponsor this project

Packages

Contributors 3

Languages

CCob/SweetPotato

Folders and files

Latest commit

History

Repository files navigation

SweetPotato

A collection of various native Windows privilege escalation techniques from service accounts to SYSTEM

About

Resources

Stars

Watchers

Forks

Releases

Sponsor this project

Packages 0

Contributors 3

Languages

Packages