Checklist
Step-by-step enumeration and pillaging checklist for every Windows box.
System Enumeration
Who you are, what privileges you hold, and the first commands on every Windows box.
Architecture & Filesystem
Key directories, writable paths, and the filesystem layout that shapes every attack.
Permissions & ACLs
ACLs, icacls, and finding misconfigurations that lead to privilege escalation.
Command Line
CMD, PowerShell, and the shell techniques you need from first access onward.
Processes & Services
Running processes, services, scheduled tasks, and their attack surface.
Remote Access
RDP, WinRM, SMB, and PsExec for moving to and between Windows hosts.
SMB & Shares
Enumerate and access SMB shares for credentials, configs, and sensitive files.
Registry
Persistence keys, credential storage, and config secrets hidden in the registry.
Security Mechanisms
Defender, AppLocker, UAC, and the defenses that shape your approach.
Pillaging
Extract credentials, secrets, and sensitive data once you have access.