This walks you through the standard playbook for escalating privileges on Windows during pentests. You get methodologies for enumeration, credential harvesting, service exploitation, token impersonation, and hunting for misconfigurations that let you jump from standard user to Administrator or SYSTEM. It assumes you already have initial access (shell or RDP) and covers tools like WinPEAS, PowerUp, and Seatbelt. The approach is systematic rather than a collection of random exploits. One thing to note: this passed Gen Agent Trust Hub and Socket but failed Snyk, so review what you're running before using it in a client environment where compliance matters.
npx skills add https://github.com/davila7/claude-code-templates --skill windows-privilege-escalation