Metasploit mailing list archives
Re: token impersonation seems broken
From: David Kennedy <kennedyd013 () gmail com>
Date: Tue, 7 Sep 2010 10:01:20 -0400
Try use priv then getsystem, also incognito is hit or miss, steal_token works much better On Sep 7, 2010 9:44 AM, "John Nash" <rootsecurityfreak () gmail com> wrote:
I am using the latest updated version of Metasploit. ( v3.4.2-dev svn r10251 updated today (2010.09.06) ) I am trying to impersonate tokens but getting an error ... here is the dump: ----------------------------------------------- meterpreter > list_tokens -u [-] Warning: Not currently running as SYSTEM, not all tokens will be available Call rev2self if primary process token is SYSTEM Delegation Tokens Available ======================================== EVEREST\Administrator NT AUTHORITY\LOCAL SERVICE NT AUTHORITY\NETWORK SERVICE NT AUTHORITY\SYSTEM Impersonation Tokens Available ======================================== NT AUTHORITY\ANONYMOUS LOGON meterpreter > impersonate_token "NT AUTHORITY\\SYSTEM" [-] Warning: Not currently running as SYSTEM, not all tokens will be available Call rev2self if primary process token is SYSTEM [-] User token NT AUTHORITYSYSTEM not found meterpreter > meterpreter > meterpreter > getuid Server username: EVEREST\Administrator meterpreter > -------------------------------------------- I am currently admin but wanna become system. Is there anything i am doing wrong? jn _______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework
_______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework
Current thread:
- token impersonation seems broken John Nash (Sep 07)
- Re: token impersonation seems broken Terrence (Sep 07)
- Re: token impersonation seems broken John Nash (Sep 07)
- Message not available
- Re: token impersonation seems broken David Kennedy (Sep 07)
- Re: token impersonation seems broken Terrence (Sep 07)