1. Enumerate Windows version / patch level `systeminfo` 2. Find matching exploits (Google, ExploitDB, Github) 3. Compile and run Beware, as Kernel exploits can often be unstable and may be one-shot or cause a system crash. Tools: - Windows Exploit Suggester (new) https://github.com/bitsadmin/wesng - Precompiled kernel exploits https://github.com/SecWiki/windows-kernel-exploits - Watson https://github.com/rasta-mouse/Watson # wes ```bash systeminfo > systeminfo.txt python3 wes.py systeminfo.txt -i 'Elevation of Privilege' --exploits-only wes.py systeminfo.txt wes.py -e systeminfo.txt wes.py -e systeminfo.txt --hide "Internet Explorer" ```