Skip to content

Instantly share code, notes, and snippets.

@hacksysteam

hacksysteam/token_stealing_6.raw

Last active August 29, 2015 14:20
Show Gist options
  • Star 0 You must be signed in to star a gist
  • Fork 0 You must be signed in to fork a gist
  • Save hacksysteam/f295994b0a811cf90e88 to your computer and use it in GitHub Desktop.
Save hacksysteam/f295994b0a811cf90e88 to your computer and use it in GitHub Desktop.
Download ZIP
Token Stealing Using WinDBG
Raw
token_stealing_6.raw
kd> dt nt!_KPRCB 82770c00+0x120
+0x000 MinorVersion : 1
+0x002 MajorVersion : 1
+0x004 CurrentThread : 0x83dcd020 _KTHREAD
+0x008 NextThread : (null)
+0x00c IdleThread : 0x8277a380 _KTHREAD
+0x010 LegacyNumber : 0 ''
+0x011 NestingLevel : 0 ''
. . .
+0x3620 ExtendedState : 0x807bf000 _XSAVE_AREA
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment