Verktyg för att injecera lösenordshashar i en process. Används för att impersonifiera ägaren av lösenordshashen vid åtkomst till nätverksresurser.
Copyright (C) 2010 Bjorn Brolin, Truesec (www.truesec.com)
USAGE
runhash PWDUMP_STRING CMD_LINE [CMD_ARG1 [...]]
runhash -p PWDUMP_STRING, not implemented in this release
PARAMETERS
-p (not implemented in this release)
Change credentials in the parent process, the one that run runhash
PWDUMP_STRING
A complete password hash string in pwdump format, see example below
CMD_LINE
The command to run with the given hash credentials
CMD_ARGn
Any number of arguments to the CMD_LINE command
EXAMPLE PWDUMP_STRING
dmn\usr::aad3b435b51404eeaad3b435b51404ec:
aad3b435aaaaaaeeaad3b435b51404eb:::
usr@dmn::aad3b435b51404eeaad3b435b51404ec:
aad3b435aaaaaaeeaad3b435b51404eb:::
PLATFORMS
Windows Vista (x64)
Windows Server 2008 (x64)
Windows Server 2008 R2 (x64)
Windows 7 (x64)
