Here you can find a short basic methodology, specially focused on privilege escalation against Windows and Linux system. Helpful for beginners.
Few Useful Links
Privilege Escalation – Linux
- uname -a (Kernel Exploit)
- Check config files under “/var/www” (Useful as www-data)
- find / -perm -u=s -type f 2>/dev/null (Search for SUID files)
- Check “/var/log”
- Check “/home/{user}/files”
- Read “/home/{user}/.bash-history”
- Pspy (For system monitoring, useful for cron tab)
- LinEnum
- Jalesc
- Linux Local Enumeration Script
- G0tmi1k Privesc Enumeration blog
Privilege Escalation – Windows
- Metasploit – post/windows/gather/enum_patches
- Metasploit – post/multi/recon/local_exploit_suggester
- Windows Exploit Suggester
- SessionGopher
- JAWS
- Windows Privesc Check
- Windows Privesc Check (PS)
- Sherlock
- PowerUp
- BeRoot
- Privesc