Launch processes with TrustedInstaller privilege
Switch branches/tags
Nothing to show
Clone or download
Joakim Schicht
Joakim Schicht Aded mit license.
1
Latest commit ca69cf0 Sep 30, 2015
Permalink
Type Name Latest commit message Commit time
Failed to load latest commit information.
.gitattributes 🍭 Added .gitattributes & .gitignore files Aug 15, 2014
.gitignore 🍭 Added .gitattributes & .gitignore files Aug 15, 2014
LICENSE.md Aded mit license. Sep 30, 2015
RunAsTI.au3 Version 1.0.0.0 Aug 15, 2014
RunAsTI.exe Version 1.0.0.0 Aug 15, 2014
RunAsTI64.exe Version 1.0.0.0 Aug 15, 2014
readme.txt Version 1.0.0.0 Aug 15, 2014

readme.txt

RunAsTI or RunAsTrustedInstaller

Is a tool to launch a program of choice (usually cmd.exe) with the same privileges as the TrustedInstaller. That privilege is very powerfull! Actually the tool makes a clone of the token from TrustedInstaller, and thus the newly created process has an identical token.

Why would you need it? Sometimes it is just not enough to just be running as "nt authority\system". Maybe it's a file or a registry key that is locked. Running a tool with this powerfull privilege most likely solve that. Usually such an issue may be due to Windows Resource Protection (WRP) protecting it (previously called Windows File Protection (WFP)); http://msdn.microsoft.com/en-us/library/windows/desktop/aa382503(v=vs.85).aspx

How do you run it? Simply double click it and cmd.exe will launch. Or pass it the program to launch as parameter.

The tool is actually a merge of 2 previous tools; RunAsSystem and RunFromToken. The curious ones might notice that RunFromToken is attached as a resource.

The tool only runs on nt6.x (Vista and later), since TrustedInstaller does not exist on earlier Windows versions.

Requirement: Administrator.