How PSExec runs application as SYSTEM user?

windows winapi windows-services createprocess
TCS picture TCS · Sep 7, 2011 · Viewed 7.3k times · Source

I wondered how psexec.exe by sysinternals executes a process as a SYSTEM user. I need to run a tool under a SYSTEM process, but I don't really know how to do that without registering it as a service.

Does anyone have an idea ?

p.s. I would really prefer to do it with WINAPI (C++). Thanks! :-)

Thanks!

Answer

Jeremy McGee picture Jeremy McGee · Sep 7, 2011

psexec operates by creating a phantom, behind-the-scenes Windows service named "psexesvc" that is then removed after the operation completes.

Details are here: http://www.windowsecurity.com/articles/PsExec-Nasty-Things-It-Can-Do.html

Perhaps your tool could call psexec to run a process?

Related questions

example code: A service calls CreateProcessAsUser() I want the process to run in the user's session, not session 0

I am seeking example code: For a service calls CreateProcessAsUser() I want the process to run in the user's session, not session 0 thus far the created process is only running like a service in session 0

Read More
What exactly are DLL files, and how do they work?

How exactly do DLL files work? There seems to be an awful lot of them, but I don't know what they are or how they work. So, what's the deal with them?

Read More
How do you configure an OpenFileDialog to select folders?

In VS .NET, when you are selecting a folder for a project, a dialog that looks like an OpenFileDialog or SaveFileDialog is displayed, but is set up to accept only folders. Ever since I've seen this I've wanted to know …

Read More