-
Notifications
You must be signed in to change notification settings - Fork 363
live token
skelsec edited this page Apr 14, 2021
·
2 revisions
Process token manipulation commands. See subcommands for options.
Sorry about the bad output options :(
For most commands administrative privileges, OR a user account that has SE_DEBUG enabled.
-
list: Lists all ProcessTokens from all processes the currnt user can open. -
current: Gets info about the token of the current session
-
-f: Tries to obtain the list of tokens even without SE_DEBUG privilege.
-
pypykatz live token list: Prints all tokens to STDOUT -
pypykatz live token current: Prints current session info