GodPotato

GodPotato is a privilege escalation tool for Windows, exploiting DCOM to elevate privileges to NT AUTHORITY\SYSTEM with ImpersonatePrivilege.

Visit Website

Visit Website

Introduction

GodPotato

GodPotato is a privilege escalation tool for Windows systems (Windows 2012 - Windows 2022). It leverages a new DCOM research-based technique to escalate privileges to NT AUTHORITY\SYSTEM, provided the user has ImpersonatePrivilege.

Key features:

DCOM Exploitation: Bypasses traditional Potato exploits limitations by using a novel DCOM-related method.
Wide OS Support: Works on Windows Server 2012 up to Windows Server 2022, and Windows 8 through Windows 11.
Low Privilege Requirement: Only needs ImpersonatePrivilege, commonly found in WEB services and database services.
RPCSS Dependency: Exploits vulnerabilities in rpcss, a core system service, ensuring broad applicability.

Use Cases:

Privilege escalation from WEB/database user to SYSTEM.
Red team operations on modern Windows environments.
Circumventing traditional privilege escalation mitigations.

Back

Information

Publisher
Admin
Websitegithub.com
Published date2025/08/04

More Products

Infrastructure Security

Visit Website

BloodHound Query Library

Details

BloodHound Query Library appears to be a resource for pre-built queries designed for use with BloodHound, a tool for analyzing Active Directory environments.

Internal

Infrastructure Security

Visit Website

Locksmith

Details

Locksmith is a PowerShell tool to find and fix misconfigurations in Active Directory Certificate Services (AD CS).

Internal

ReportingInfrastructure SecurityPhysical Security

Visit Website

Osintly

Details

Osintly is an OSINT (Open Source Intelligence) platform designed to empower your searches with precision and accuracy. Unlock the world’s information using our advanced OSINT tools and techniques.

OSINT External Report Static Analysis Web+1

GodPotato