[addtool] GodPotato #1042
Comments
|
Issue correctly handled, tool is waiting for human validation. |
|
You don't respect the expected format of the issue in all your contributions as explained in the guidelines. The Please use the issue template created for that purpose to avoid any mistake. For now I put your contributions in stand by mode until you fix them. It's too much work for me to manually edit them all. Thank you for your understanding. |
gwen001
added
invalid
|
Tool has been refused by the team, feel free to get in touch if you have any question. Thank you! |
gwen001
added
wontfix
gwen001
added
enhancement
[homepage] If you have "ImpersonatePrivilege" permission, then you are "NT AUTHORITY\SYSTEM" [/homepage]
[link] https://github.com/BeichenDream/GodPotato [/link]
[tags] potato, godpotato, windows, privesc [/tags]
[short_descr]
Based on the history of Potato privilege escalation for 6 years, from the beginning of RottenPotato to the end of JuicyPotatoNG, I discovered a new technology by researching DCOM, which enables privilege escalation in Windows 2012 - Windows 2022, now as long as you have "ImpersonatePrivilege" permission. Then you are "NT AUTHORITY\SYSTEM", usually WEB services and database services have "ImpersonatePrivilege" permissions.
Potato privilege escalation is usually used when we obtain WEB/database privileges. We can elevate a service user with low privileges to "NT AUTHORITY\SYSTEM" privileges. However, the historical Potato has no way to run on the latest Windows system. When I was researching DCOM, I found a new method that can perform privilege escalation. There are some defects in rpcss when dealing with oxid, and rpcss is a service that must be opened by the system. , so it can run on almost any Windows OS, I named it GodPotato
[/short_descr]
[image]
[/image]
The text was updated successfully, but these errors were encountered: