https://github.com/franckferman/systematic

👻 SYSTEMatic: Systematically Seizing SYSTEM Rights. Token Impersonation POC. Alternative to PSExec for token theft. From Administrator to NT Authority\SYSTEM.
https://github.com/franckferman/systematic

administration-system administrator c cyber-security cybersecurity elevation-of-privilege exploiting poc privilege-elevation privilege-escalation proof-of-concept proof-of-work psexec security security-tools system-administration token-stealer windows windows-10 windows-server

Last synced: about 1 month ago
JSON representation

👻 SYSTEMatic: Systematically Seizing SYSTEM Rights. Token Impersonation POC. Alternative to PSExec for token theft. From Administrator to NT Authority\SYSTEM.

• Host: GitHub
• URL: https://github.com/franckferman/systematic
• Owner: franckferman
• License: agpl-3.0
• Created: 2023-11-11T17:53:31.000Z (about 1 year ago)
• Default Branch: main
• Last Pushed: 2023-12-01T01:09:20.000Z (12 months ago)
• Last Synced: 2023-12-01T02:26:18.084Z (12 months ago)
• Topics: administration-system, administrator, c, cyber-security, cybersecurity, elevation-of-privilege, exploiting, poc, privilege-elevation, privilege-escalation, proof-of-concept, proof-of-work, psexec, security, security-tools, system-administration, token-stealer, windows, windows-10, windows-server
• Language: C
• Homepage: https://github.com/franckferman/SYSTEMatic
• Size: 131 KB
• Stars: 1
• Watchers: 1
• Forks: 0
• Open Issues: 0
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

        


[![Contributors][contributors-shield]](https://github.com/franckferman/SYSTEMatic/graphs/contributors)

[![Forks][forks-shield]](https://github.com/franckferman/SYSTEMatic/network/members)

[![Stargazers][stars-shield]](https://github.com/franckferman/SYSTEMatic/stargazers)

[![Issues][issues-shield]](https://github.com/franckferman/SYSTEMatic/issues)

[![License][license-shield]](https://github.com/franckferman/SYSTEMatic/blob/stable/LICENSE)



  



👻 SYSTEMatic



    SYSTEMatic: Systematically Seizing SYSTEM Rights.

    


    Token Impersonation POC. Alternative to PSExec for token theft.

    


    From Administrator to NT Authority\SYSTEM.





    📘 Explore the full documentation

    ·

    🐞 Report Bug

    ·

    🛠️ Request Feature





## 📜 Table of Contents

  Click to collapse/expand

  


    
📖 About

    
❗ Troubleshooting

    
🤝 Contributing

    
⚖️ Legal Disclaimer

    
🌠 Star Evolution

    
📜 License

    
📞 Contact

  


## 📖 About

SYSTEMatic is a streamlined and effective Proof of Concept (POC) tool specifically designed for achieving SYSTEM-level access through token impersonation in Windows environments. This tool stands out for its focused and simplified approach, presenting a specialized alternative to utilities like PSExec. SYSTEMatic excels in scenarios requiring privilege escalation, seamlessly transitioning from administrator-level to SYSTEM-level privileges.



  



### ⚙️ Technical Overview:

Token Impersonation: SYSTEMatic performs token impersonation by extracting and duplicating a SYSTEM token from an active process using Windows API functions like OpenProcess, OpenProcessToken, and DuplicateTokenEx. This allows it to operate with SYSTEM-level privileges.

Lightweight and Direct: Designed for efficiency and straightforward use, the program is lightweight and directly interacts with system processes and tokens, minimizing complexity and resource usage.

Targeted Functionality: Specifically focuses on elevating privileges to the SYSTEM level by duplicating and using SYSTEM tokens, a targeted approach for precise security operations.

(🔼 Back to top)


## 🔧 Troubleshooting

Encountering issues? Don't worry. If you come across any problems or have questions, please don't hesitate to submit a ticket for assistance: [Submit an issue on GitHub](https://github.com/franckferman/SYSTEMatic/issues)

(🔼 Back to top)


## 🤝 Contributing

We truly appreciate and welcome community involvement. Your contributions, feedback, and suggestions play a crucial role in improving the project for everyone. If you're interested in contributing or have ideas for enhancements, please feel free to open an issue or submit a pull request on our GitHub repository. Every contribution, no matter how big or small, is highly valued and greatly appreciated!

(🔼 Back to top)


## ⚖️ Legal Disclaimer

Please be aware that the use of the `SYSTEMatic` tool may be subject to specific laws and regulations in your country or region. Before using this tool, it is your responsibility to ensure that its use is in compliance with the laws applicable in your jurisdiction.

The creator of `SYSTEMatic` cannot be held responsible for any improper or illegal use of this tool. By using `SYSTEMatic`, you acknowledge and agree that you are solely responsible for complying with local laws and regulations.

In some instances, the use of `SYSTEMatic` might be justified for legitimate purposes such as protection against authoritarian regimes or for survival matters. However, it is strongly advised to take all necessary measures to protect yourself and to abide by the law.

By using `SYSTEMatic`, you acknowledge having read this disclaimer and agree to act accordingly. The creator of `SYSTEMatic` does not in any way endorse the use of this tool for illegal or harmful purposes.

(🔼 Back to top)


## 🌠 Star Evolution

Explore the star history of this project and see how it has evolved over time:



  

    

    

  



Your support is greatly appreciated. We're grateful for every star! Your backing fuels our passion. ✨

## 📚 License

This project is licensed under the GNU Affero General Public License, Version 3.0. For more details, please refer to the LICENSE file in the repository: [Read the license on GitHub](https://github.com/franckferman/SYSTEMatic/blob/stable/LICENSE)

(🔼 Back to top)


## 📞 Contact

[![ProtonMail][protonmail-shield]](mailto:[email protected]) 

[![LinkedIn][linkedin-shield]](https://www.linkedin.com/in/franckferman)

[![Twitter][twitter-shield]](https://www.twitter.com/franckferman)

(🔼 Back to top)


[contributors-shield]: https://img.shields.io/github/contributors/franckferman/SYSTEMatic.svg?style=for-the-badge

[contributors-url]: https://github.com/franckferman/SYSTEMatic/graphs/contributors

[forks-shield]: https://img.shields.io/github/forks/franckferman/SYSTEMatic.svg?style=for-the-badge

[forks-url]: https://github.com/franckferman/SYSTEMatic/network/members

[stars-shield]: https://img.shields.io/github/stars/franckferman/SYSTEMatic.svg?style=for-the-badge

[stars-url]: https://github.com/franckferman/SYSTEMatic/stargazers

[issues-shield]: https://img.shields.io/github/issues/franckferman/SYSTEMatic.svg?style=for-the-badge

[issues-url]: https://github.com/franckferman/SYSTEMatic/issues

[license-shield]: https://img.shields.io/github/license/franckferman/SYSTEMatic.svg?style=for-the-badge

[license-url]: https://github.com/franckferman/SYSTEMatic/blob/stable/LICENSE

[protonmail-shield]: https://img.shields.io/badge/ProtonMail-8B89CC?style=for-the-badge&logo=protonmail&logoColor=blueviolet

[linkedin-shield]: https://img.shields.io/badge/-LinkedIn-black.svg?style=for-the-badge&logo=linkedin&colorB=blue

[twitter-shield]: https://img.shields.io/badge/-Twitter-black.svg?style=for-the-badge&logo=twitter&colorB=blue