SigmaPotato - HackDB

Recent Category Tag Pricing Submit

Newsletter

Join the Community

Subscribe to our newsletter for the latest news and updates

Email

The Ultimate Directory for Offensive Security

Resources

Recent
Category

Home
Items
SigmaPotato

SigmaPotato

SigmaPotato: SeImpersonate privilege escalation tool for Windows 8-11 & Server 2012-2022 with PowerShell & .NET reflection support.

Visit Website Share on X

image of SigmaPotato

Introduction

Information

Publisher
Admin
Websitegithub.com
Created date06/01/2025
Published date06/01/2025

Categories

Infrastructure Security

Tags

Internal

More Resources

Listing

Pricing
FAQ
Submit

Pages

Home
Support
Sitemap
llms.txt

Company

About Us
Privacy Policy
Terms of Service

Copyright © 2026 All Rights Reserved.

image of PentAGI

AI SecurityApplication SecurityInfrastructure SecurityReconnaissance

PentAGI

Autonomous AI agent system for complex penetration testing, integrating security tools, long-term memory, and smart task delegation in sandboxed Docker.

AI OSINT Web Internal External

image of IronPE

Exploit DevelopmentInfrastructure SecurityRed Team Operations

IronPE

Rust-based Windows PE manual loader supporting x86/x64. Implements manual mapping, base relocations, and import resolution for memory-based execution.

image of Swarmer

Red Team OperationsInfrastructure Security

Swarmer

Convert registry exports into NTUSER.MAN hive files to stealthily inject HKCU keys without admin rights, bypassing EDR/AV registry API monitoring.

SigmaPotato is a SeImpersonate privilege escalation tool for Windows 8 through 11 and Windows Server 2012 through 2022. It enhances the original GodPotato project with improved PowerShell support and user experience. Key features include:

Execution from memory via .NET reflection (local and remote).
Built-in PowerShell reverse shell functionality.
Bypassing the 1024 character limit for PowerShell commands.
Streamlined tool usage with implied variables.
Enhanced visual formatting of PowerShell process output.
Error output verbosity with suggestions for common errors.
Rudimentary AV heuristics bypass.

It targets penetration testers and red teamers needing to escalate privileges on Windows systems.