{"id":13536016,"url":"https://github.com/rasta-mouse/Watson","last_synced_at":"2025-04-02T02:32:05.795Z","repository":{"id":44763309,"uuid":"152125527","full_name":"rasta-mouse/Watson","owner":"rasta-mouse","description":"Enumerate missing KBs and suggest exploits for useful Privilege Escalation vulnerabilities","archived":true,"fork":false,"pushed_at":"2020-11-28T07:35:51.000Z","size":221,"stargazers_count":1538,"open_issues_count":4,"forks_count":263,"subscribers_count":54,"default_branch":"master","last_synced_at":"2024-09-26T04:41:58.675Z","etag":null,"topics":[],"latest_commit_sha":null,"homepage":"","language":"C#","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"gpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/rasta-mouse.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE.txt","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null}},"created_at":"2018-10-08T18:16:36.000Z","updated_at":"2024-09-22T20:12:58.000Z","dependencies_parsed_at":"2022-08-16T00:50:09.300Z","dependency_job_id":null,"html_url":"https://github.com/rasta-mouse/Watson","commit_stats":null,"previous_names":[],"tags_count":1,"template":false,"template_full_name":null,"repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rasta-mouse%2FWatson","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rasta-mouse%2FWatson/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rasta-mouse%2FWatson/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/rasta-mouse%2FWatson/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/rasta-mouse","download_url":"https://codeload.github.com/rasta-mouse/Watson/tar.gz/refs/heads/master","host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":222795273,"owners_count":17038797,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2022-07-04T15:15:14.044Z","host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":[],"created_at":"2024-08-01T09:00:33.688Z","updated_at":"2024-11-03T01:30:16.211Z","avatar_url":"https://github.com/rasta-mouse.png","language":"C#","funding_links":[],"categories":["Privilege Escalation","[↑](#table-of-contents) [Discovery](https://attack.mitre.org/tactics/TA0007/)","C# #","C# (212)","Pentest Methodology","🚀 Elevating Privileges","Windows"],"sub_categories":["Windows","[T1082 - System Information Discovery](https://attack.mitre.org/techniques/T1082)","Privilege Escalation","Tools"],"readme":"# Watson\n\nWatson is a .NET tool designed to enumerate missing KBs and suggest exploits for Privilege Escalation vulnerabilities.\n\n## Supported Versions\n\n- Windows 10 1507, 1511, 1607, 1703, 1709, 1803, 1809, 1903, 1909, 2004\n- Server 2016 \u0026 2019\n\n## Usage\n\n```\nC:\\\u003e Watson.exe\n  __    __      _\n / / /\\ \\ \\__ _| |_ ___  ___  _ __\n \\ \\/  \\/ / _` | __/ __|/ _ \\| '_ \\\n  \\  /\\  / (_| | |_\\__ \\ (_) | | | |\n   \\/  \\/ \\__,_|\\__|___/\\___/|_| |_|\n\n                           v2.0\n\n                   @_RastaMouse\n\n [*] OS Build Number: 14393\n [*] Enumerating installed KBs...\n\n [!] CVE-2019-0836 : VULNERABLE\n  [\u003e] https://exploit-db.com/exploits/46718\n  [\u003e] https://decoder.cloud/2019/04/29/combinig-luafv-postluafvpostreadwrite-race-condition-pe-with-diaghub-collector-exploit-from-standard-user-to-system/\n\n [!] CVE-2019-0841 : VULNERABLE\n  [\u003e] https://github.com/rogue-kdc/CVE-2019-0841\n  [\u003e] https://rastamouse.me/tags/cve-2019-0841/\n\n [!] CVE-2019-1064 : VULNERABLE\n  [\u003e] https://www.rythmstick.net/posts/cve-2019-1064/\n\n [!] CVE-2019-1130 : VULNERABLE\n  [\u003e] https://github.com/S3cur3Th1sSh1t/SharpByeBear\n\n [!] CVE-2019-1253 : VULNERABLE\n  [\u003e] https://github.com/padovah4ck/CVE-2019-1253\n\n [!] CVE-2019-1315 : VULNERABLE\n  [\u003e] https://offsec.almond.consulting/windows-error-reporting-arbitrary-file-move-eop.html\n\n [*] Finished. Found 6 potential vulnerabilities.\n```\n\n## Issues\n\n- I try to update Watson after every Patch Tuesday, but for potential false positives check the latest supersedence information in the [Windows Update Catalog](https://www.catalog.update.microsoft.com/Home.aspx).  If you still think there's an error, raise an Issue with the `Bug` label.\n\n- If there's a particular vulnerability that you want to see in Watson that's not already included, raise an Issue with the `Vulnerability Request` label and include the CVE number.\n\n- If you know of a good exploit for any of the vulnerabilities in Watson, raise an Issue with the `Exploit Suggestion` label and provide a URL to the exploit.","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Frasta-mouse%2FWatson","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Frasta-mouse%2FWatson","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Frasta-mouse%2FWatson/lists"}