A local privilege escalation utility that allows elevating from an administrator context to the SYSTEM account on Windows to perform high-privilege operations.
This package require:
- python3
- python3 Standard Library
python3 -m pip install WinSystemShellgit clone "https://github.com/mauricelambert/WinSystemShell.git"
cd "WinSystemShell"
python3 -m pip install .wget https://github.com/mauricelambert/WinSystemShell/archive/refs/heads/main.zip
unzip main.zip
cd WinSystemShell-main
python3 -m pip install .curl -O https://github.com/mauricelambert/WinSystemShell/archive/refs/heads/main.zip
unzip main.zip
cd WinSystemShell-main
python3 -m pip install .WinSystemShell # Using CLI package executable
python3 -m WinSystemShell # Using python module
python3 WinSystemShell.pyz # Using python executable
WinSystemShell.exe # Using python Windows executable
python WinSystemShell.py --executable C:\Windows\System32\cmd.exe --schtasks "SystemRunOnce.exe" --server-path C:\temp\server.py --pipein shellpipein --pipeout shellpipeoutfrom WinSystemShell import *
PipeClient(executable=r"C:\Windows\System32\cmd.exe", schtasks="SystemRunOnce.exe", server_path=r"C:\temp\server.py", pipein="shellpipein", pipeout="shellpipeout").run()- Pypi
- Github
- Documentation
- Python executable
- Python Windows executable
- Server Documentation
- Server Python executable
- Server Python Windows executable
Licensed under the GPL, version 3.