Skip to content

a little tool to play with RIDs for sneaky persistence

Notifications You must be signed in to change notification settings

cpu0x00/SharpRIDHijack

Repository files navigation

SharpRIDHijack

a little tool to play with RIDs for sneaky persistence

.\SharpRIDHijack.exe -h

--user, -u                   username to use
--password, -p                 password to use [if present without --enable a new user will be created otherwise it will enable a user and change its password]
--enable                       enables an existing disabled user and hijackes its rid
--elevate                      if present will attempt SYSTEM impersonation (use if you are not SYSTEM already)
  • Make any user a local admin without adding them to any group
  • Bypasses the LocalAccountTokenFilterPolicy as the user's RID in the registry will be 500

About

a little tool to play with RIDs for sneaky persistence

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published

Languages