@splinter_code : We are releasing an alternative way for elevating to SYSTEM when you have SeTcbPrivilege How? Leveraging AcquireCredentialsHandle through an SSPI hook that allows authenticating as SYSTEM to SCM Should be "lighter" than the classic S4U cc @decoder_it gist.github.com/antonioCoco/19… • TwiCopy

Antonio Cocomazzi

@splinter_code

+ Follow

offensive security - windows internals | BlueSky: bsky.app/profile/splint… | Mastodon: infosec.exchange/@splinter_code

ID: 765654623461994496

linkhttps://splintercod3.blogspot.com/ calendar_today16-08-2016 21:01:02

1,1K Tweet

8,8K Takipçi

329 Takip Edilen

Antonio Cocomazzi

@splinter_code

3 years ago

We are releasing an alternative way for elevating to SYSTEM when you have SeTcbPrivilege How? Leveraging AcquireCredentialsHandle through an SSPI hook that allows authenticating as SYSTEM to SCM Should be "lighter" than the classic S4U cc Andrea P gist.github.com/antonioCoco/19…

thumb_up_off_alt536

chat_bubble_outline5

repeat204

shareShare