windows-privilege-escalation

This skill is an explicit offensive pentesting guide for Windows privilege escalation. Its purpose and capabilities are aligned: it provides enumeration commands and concrete exploitation workflows (credential harvesting, service modification, token impersonation, kernel exploits) that legitimately belong in penetration testing but are high-risk in any other context. The content includes direct instructions for creating/placing/executing attacker-controlled payloads and performing credential extraction, and it shows network callbacks to attacker endpoints. If used on systems without written authorization this material would enable serious compromise and data theft. From a supply-chain perspective there are no obfuscated payloads or hidden network proxies in the text itself, but the skill endorses downloading and running third-party exploit binaries and reverse-shell payloads — a high operational risk. Recommended mitigations: only use under explicit authorization in controlled environments, prefer offline analysis of artifacts, verify and build all third-party tools from source in secure CI, avoid executing untrusted binaries, and monitor for the described suspicious behaviors (service config changes, unexpected msiexec activity, reverse shell connections).