openpath.rb tools

1. adduser.exe is a win32 executable which simply adds a user named 'pwnadmin' with a password of 'P@ssw0rd!23' and adds them to the local Administrators group. (source)

Rename this file and save it in e.g. C:\Program.exe and reboot the PC to abuse open paths in Windows services and execute code as SYSTEM.

2. openpath.exe

Designed for use in security auditing & penetration tests. Openpath discovers vulnerable services, permissions, paths and registry entries which may be used to elevate a normal user account to LocalSystem.

At the moment, it only checks for vulnerable services, run keys, and writable files.