|
|
|
|
|
|
by greenn
1450 days ago
|
|
|
If I understand correctly, this is just a kernel-mode snippit to copy the System process token to your target process. It assumes you've already found a vulnerable driver to execute code in the kernel. If you can execute code in the kernel then yeah, you can give processes privileges they didn't have before. |
|
|