Created
May 7, 2015 08:22
-
-
Save hacksysteam/4a14897da571f4b1ed90 to your computer and use it in GitHub Desktop.
Token Stealing Using WinDBG
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
kd> dt nt!_KPCR 82770c00 | |
+0x000 NtTib : _NT_TIB | |
+0x000 Used_ExceptionList : 0x88a573ac _EXCEPTION_REGISTRATION_RECORD | |
. . . | |
+0x0d8 Spare1 : 0 '' | |
+0x0dc KernelReserved2 : [17] 0 | |
+0x120 PrcbData : _KPRCB |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment