WinPEAS
Most comprehensive Windows enumeration tool.Download
Transfer to Target
Run
Specific Checks
Save Output
Color Legend
| Color | Meaning |
|---|---|
| Red | Interesting / misconfigured or special privilege (pentester view) |
| Green | Something well configured / a protection is enabled |
| Cyan | Active users |
| Blue | Disabled users |
PowerUp (PowerShell)
Part of PowerSploit. Checks common misconfigurations.Download
Load
Run All Checks
Specific Checks
Auto-exploit
Seatbelt (.NET)
Security-focused enumeration. Detailed but no auto-exploit.Run All Checks
Specific Groups
Individual Commands
SharpUp (.NET)
GhostPack. Checks same things as PowerUp but in C#.PrivescCheck (PowerShell)
Modern alternative to PowerUp.JAWS (PowerShell)
Lightweight, fewer dependencies.Quick Decision
| Scenario | Tool |
|---|---|
| Full enumeration, .NET available | WinPEAS.exe |
| No .NET | winPEAS.bat or JAWS |
| PowerShell available | PowerUp or PrivescCheck |
| Need auto-exploit | PowerUp (Invoke-ServiceAbuse) |
| Security audit detail | Seatbelt |
| Stealth (no file on disk) | IEX download + PowerUp |