Skip to content

Instantly share code, notes, and snippets.

@hacksysteam

hacksysteam/token_stealing_8.raw

Created May 7, 2015 08:26
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save hacksysteam/1a838ae28942444a20fc to your computer and use it in GitHub Desktop.
Save hacksysteam/1a838ae28942444a20fc to your computer and use it in GitHub Desktop.
Download ZIP
Token Stealing Using WinDBG
Raw
token_stealing_8.raw
kd> dt nt!_KAPC_STATE 0x83dcd020+0x40
+0x000 ApcListHead : [2] _LIST_ENTRY [ 0x83dcd060 - 0x83dcd060 ]
+0x010 Process : 0x8570b5e8 _KPROCESS
+0x014 KernelApcInProgress : 0 ''
+0x015 KernelApcPending : 0 ''
+0x016 UserApcPending : 0 ''
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment