This PoC is based on this blog.
Thanks to @Wh04m1001 for the improvements to this project
RPC abuse on DiagTrack service
magicDiagTrack v0.1 (by @Crispr)
Provided that the current user has the SeImpersonate privilege, this tool will have an escalation to SYSTEM
Arguments:
-c <CMD> Execute the command *CMD*
-i Interact with the new process in the current command prompt (default is non-interactive)
Example:
