Open fredericgoossens opened 1 year ago
rkervella
commented
1 year ago runas [DOMAIN\user] [password] [command]- This runs a command as another user using their credentials. The runas command will not return any output. You may use runas from a non- privileged context though.
Pretty sure we have that already with the reworked runas command.
fredericgoossens
commented
1 year ago I tried to execute my same payload using the 'runas' command, which executes the payload as a different user. In theory, this should result in a new beacon from that user. But unfortunately, that didn't seem to be the case.
I will make another attempt tomorrow and provide more comprehensive information regarding this issue.
rkervella
commented
1 year ago Could be a bug in runas too.
rkervella
commented
1 year ago Since this is windows specific, it's probably better to implement it as an extension.
feature: https://github.com/S1ckB0y1337/Cobalt-Strike-CheatSheet#miscellaneous https://www.youtube.com/watch?v=7jn1mG30YR4
runas [DOMAIN\user] [password] [command]- This runs a command as another user using their credentials. The runas command will not return any output. You may use runas from a non- privileged context though.
spawnas [DOMAIN\user] [password] [listener] - This command spawns a session as another user using their credentials. This command spawns a temporary process and injects your payload stage into it.