Modified version of RottenPotatoNG C++ (/https://github.com/foxglovesec/RottenPotatoNG). Only exe branch. This version includes the API calls to CreateProcesAsUser() and CreateProcessWithTokenW() in order to execute a process passed from command line. Command line args are:
- Type of API Call (u) = CreateProcesAsUser, (t) = CreateProcessWithTokenW , (*) = both
- program to execute (typically a reverse shell via bat file)
I also included a Thread impersonating SYSTEM. See MSFRottenpotato.cpp for more details
Visit also my blog: https://decoder.cloud