EOPRadar is a free app for advanced users to check systems for several classes of privilege escalation vulnerabilities including testing for pentesting engagements, OS image hardening, and SRP/AppLocker testing.

EOPRadar should be run under a standard account, not an administrator, although you will be reminded of this should you try. The reason for this is the app is going to scan for standard account writable paths which should not be executable.

EOPRadar is portable. Click to run and press scan. Any problems discovered need to be fixed manually.

In the scan results, a warning (yellow) indicates a writable process path, while an alert (red) shows a critical EOP vulnerability, which would allow any standard user to elevate privileges to administrator. Any findings in red should be taken very seriously, especially in an AD domain environment.