all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

SharpImpersonation - A User Impersonation Tool - Via Token Or Shellcode Injection

Add to bookmarks

Web: http://www.kitploit.com/2022/09/sharpimpersonation-user-impersonation.html

Sept. 15, 2022, 11:30 a.m. | noreply@blogger.com (Unknown)

KitPloit - PenTest Tools! kitploit.com


This was a learning by doing project from my side. Well known techniques are used to built just another impersonation tool with some improvements in comparison to other public tools. The code base was taken from:

A blog post for the intruduction can be found here:


List user processes

PS > PS C:\temp> SharpImpersonation.exe list


List only elevated processes

PS > PS C:\temp> SharpImpersonation.exe list elevated

Impersonate the first process of the target user to start a new …

impersonation injection sharpimpersonation shellcode shellcode injection token tool webserver

Visit resource

More from kitploit.com / KitPloit - PenTest Tools!

SSTImap - Automatic SSTI Detection Tool With Interactive Interface 1 day ago | kitploit.com
automatic detection information security penetration testing tools +4
BlueHound - Tool That Helps Blue Teams Pinpoint The Security Issues That Actually Matter 2 days ago | kitploit.com
blue bluehound matter pinpoint +7
GUAC - Aggregates Software Security Metadata Into A High Fidelity Graph Database 3 days ago | kitploit.com
database fidelity graph database guac +5
DC-Sonar - Analyzing AD Domains For Security Risks Related To User Accounts 4 days ago | kitploit.com
accounts dc-sonar domains infosectools +8
Get-AppLockerEventlog - Script For Fetching Applocker Event Log By Parsing The Win-Event Log 5 days ago | kitploit.com
applocker event get-applockereventlog log +2
SQLiDetector - Helps You To Detect SQL Injection "Error Based" By Sending Multiple Requests With … 6 days ago | kitploit.com
bugbounty databases error injection +7
Popeye - A Kubernetes Cluster Resource Sanitizer 1 week ago | kitploit.com
cluster golang k8s kubernetes +6
Tai-e - An Easy-To-Learn/Use Static Analysis Framework For Java 1 week, 1 day ago | kitploit.com
analysis framework java learn +4
Ghauri - An Advanced Cross-Platform Tool That Automates The Process Of Detecting And Exploiting SQL … 1 week, 2 days ago | kitploit.com
advanced exploiting flaws ghauri +10

Latest InfoSec / Cybersecurity Jobs

View more jobs Post a job on infosec-jobs.com

Cybersecurity Engineer

@ Apercen Partners LLC | Folsom, CA
View on infosec-jobs.com

IDM Sr. Security Developer

@ The Ohio State University | Columbus, OH, United States
View on infosec-jobs.com

IT Security Engineer

@ Stylitics | New York City
View on infosec-jobs.com

Information Security Engineer

@ VDA Labs | Remote
View on infosec-jobs.com

Information Security Analyst

@ Metropolitan Transportation Commission | San Francisco, CA
View on infosec-jobs.com

Senior Professional Services Consultant I

@ Palo Alto Networks | New York City, United States
View on infosec-jobs.com

Senior Consultant, Security Research Services (Security Research Services (Unit 42) - Remote

@ Palo Alto Networks | Santa Clara, CA, United States
View on infosec-jobs.com

Software Architect – Endpoint Security

@ Zscaler | San Jose, CA, United States
View on infosec-jobs.com

Chief Information Security Officer H/F

@ AccorCorpo | Évry-Courcouronnes, France
View on infosec-jobs.com

Director of Security Engineering & Compliance

@ TaxBit | Washington, District of Columbia, United States
View on infosec-jobs.com

Principal, Product Security Architect

@ Western Digital | San Jose, CA, United States
View on infosec-jobs.com

IT Security Lead Consultant

@ Devoteam | Praha 1, Czech republic
View on infosec-jobs.com