Metasploit mailing list archives
Re: Impersonation with Incognito
From: c0lists <lists () carnal0wnage com>
Date: Tue, 6 Sep 2011 20:38:19 -0400
stealing a token will require you to already have SYSTEM privs. so it goes: get user account-->escalate to SYSTEM-->see domain admin token-->impersonate domain admin token to do domain admin stuff using incognito you'll need to use one of the privilege escalation post exploitation modules, getystem, ask for it, etc, (or service exploit that yields SYSTEM shell) to get to SYSTEM before you can properly use incognito. hope that helps -CG On Tue, Sep 6, 2011 at 8:11 PM, haZard0us <hazard0us.pt () gmail com> wrote:
Hi all, I'm getting used to Meterpreter and i want to know if i can use Incognito to get higher user privileges. Let's say... I'm running a machine with the MSF\haZard0us user and this user has some limited access. Can i use incognito to get let's say, NT AUTHORITY\SYSTEM access? I ask this because i can't find any example of it and the ones that i find only use it to get from a higher privileged account to a lesser one. Starting to think that this isn't possible as easily as getsystem with kitrap0d :) Regards, haZard0us _______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework
_______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework
Current thread:
- Some mod. info. references don't produce valid URLs Joshua TAYLOR (Aug 31)
- Re: Some mod. info. references don't produce valid URLs HD Moore (Aug 31)
- Re: Some mod. info. references don't produce valid URLs Joshua TAYLOR (Sep 01)
- Re: Some mod. info. references don't produce valid URLs Joshua TAYLOR (Sep 06)
- Impersonation with Incognito haZard0us (Sep 06)
- Re: Impersonation with Incognito c0lists (Sep 06)
- Re: Some mod. info. references don't produce valid URLs HD Moore (Aug 31)