go-win64api icon indicating copy to clipboard operation
go-win64api copied to clipboard

Published 20 hours ago verified publisher icon iamacarpet

Create Session Tokens with ZwCreateToken

Open iamacarpet opened this issue 4 years ago • 1 comments

As a starting point to implementing RunAs functionality, we'll need to be able to create tokens with ZwCreateToken

This is an apparently undocumented API that allows you to execute as a user without their full credentials.

This library normally runs (for us) as NT AUTH\SYSTEM, so permissions shouldn't be a problem.

A good example, I'm told, is "RunAsEx" on CodeProject.

This will then allow "CreateProcessAsUser" with that token.

iamacarpet avatar Feb 11 '21 09:02 iamacarpet

This might be helpful: https://github.com/ansible/ansible/issues/34343

iamacarpet avatar Mar 29 '22 22:03 iamacarpet