Skip to content

SecTheBit/TokenStealer

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

2 Commits
README.md
README.md
 
 
TokenStealer.c
TokenStealer.c
 
 

Repository files navigation

TokenStealer

About

Token Stealer is based on Token Theft Attack, where it helps the Red Teamers to Steal the Access Token of a User, if a process is running in the context of Victim.

Windows API Used

  1. OpenProcessToken
  2. LookupPrivilegeValueA
  3. AdjustTokenPrivileges
  4. OpenProcess
  5. DuplicateTokenEx
  6. CreateProcessWithTokenW

Usage

  1. First change the process name in the code . I have used the "Notepad.exe" in the Code.
  2. Compile the Program
  3. Use the executable
  4. The executable should be running in High Integrity Process , as an Administrator

Compiler Compabitity

POC

Demo

bandicam.2023-10-11.09-35-00-423.mp4

About

TokenStealer is a tool which helps to steal the access tokens of other user, if attacker have administrator privilege.

divyanshudiwakar.com/index.php/writing-your-own-token-stealer/

Resources

Readme
Activity

Stars

2 stars

Watchers

1 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages