Giters

twosevenzero / bof-NetworkServiceEscalate

Abuses the Shared Logon Session ID Issue (Described [here](https://www.tiraniddo.dev/2020/04/sharing-logon-session-little-too-much.html) by the awesome James Forshaw) To Achieve System From NetworkService. Can be used as a "getsystem" as well

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

About

A sample "Beacon Object File" (COFF, really) created with the Mingw-W64 compiler (partially cause I mostly work from a Unix based environment) to escalate from NetworkService or lower privilege to SYSTEM by abusing the issue described by the brilliant James Forshaw here.

Credits

  • OffSecGinger for his random_string() function in network.cna
  • Alex Ionescu: I ripped some of his code from FaxHell to implement the functions in token.c. As such, he deserves credit as I did not know how to properly implement them without some crazy code.

About

Abuses the Shared Logon Session ID Issue (Described [here](https://www.tiraniddo.dev/2020/04/sharing-logon-session-little-too-much.html) by the awesome James Forshaw) To Achieve System From NetworkService. Can be used as a "getsystem" as well

Languages

Language:C 96.0%Language:Makefile 4.0%