openpath

Designed for use in security auditing & penetration tests. ItOpenpath discovers vulnerable services, permissions, paths and registry entries which may be used to elevate a normal user account to LocalSystem.

At the moment, it only checks for vulnerable services, run keys, and writable files. But there is more to be done. Feel free to join this project or tackle the open tickets!

Use Trac/SVN to download the ".rb" ruby script, or checkout Files to download the executable version which can be used on hosts without installing a Ruby interpreter (the exe has been compiled with RubyScript2Exe and it includes a compressed copy of Ruby and libraries).

I have also started a list of known vulnerable software Offenders :)

-Patrick