Skip to content

S3cur3Th1sSh1t/SharpImpersonation

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

18 Commits
.github
.github
 
 
Images
Images
 
 
SharpImpersonation
SharpImpersonation
 
 
LICENSE
LICENSE
 
 
README.md
README.md
 
 
SharpImpersonation.sln
SharpImpersonation.sln
 
 

Repository files navigation

SharpImpersonation

This was a learning by doing project from my side. Well known techniques are used to built just another impersonation tool with some improvements in comparison to other public tools. The code base was taken from:

A blog post for the intruduction can be found here:

List user processes

PS > PS C:\temp> SharpImpersonation.exe list

alt text

List only elevated processes

PS > PS C:\temp> SharpImpersonation.exe list elevated

Impersonate the first process of the target user to start a new binary

PS > PS C:\temp> SharpImpersonation.exe user:<user> binary:<binary-Path>

alt text

Inject base64 encoded shellcode into the first process of the target user

PS > PS C:\temp> SharpImpersonation.exe user:<user> shellcode:<base64shellcode>

alt text

Inject shellcode loaded from a webserver into the first process of the target user

PS > PS C:\temp> SharpImpersonation.exe user:<user> shellcode:<URL>

alt text

Impersonate the target user via ImpersonateLoggedOnuser for the current session

PS > PS C:\temp> SharpImpersonation.exe user:<user> technique:ImpersonateLoggedOnuser

alt text

About

A User Impersonation tool - via Token or Shellcode injection

Resources

Readme

License

BSD-3-Clause license
Activity

Stars

398 stars

Watchers

13 watching

Forks

72 forks
Report repository

Releases

No releases published

Sponsor this project

 
Learn more about GitHub Sponsors

Packages

No packages published

Contributors 2

  •  
  •  

Languages