Using AdjustTokenPrivileges via Meterpreter Railgun

["Spencer, Shelby C" <Shelby_C_Spencer () rl gov>]

Hi,

I'm trying to add a couple token privilege to the current process Meterpreter is running under like so:

hcurrent = client.railgun.kernel32.GetCurrentProcess
hcurrentToken = client.railgun.advapi32.OpenProcessToken(hcurrent["return"], 40, 4)
SeIncreaseQuotaPrivilege = client.railgun.advapi32.LookupPrivilegeValueW(nil, "SeIncreaseQuotaPrivilege", 4)
SeAssignPrimaryTokenPrivilege = client.railgun.advapi32.LookupPrivilegeValueW(nil, "SeAssignPrimaryTokenPrivilege", 4)
client.railgun.advapi32.AdjustTokenPrivileges(hcurrentToken["TokenHandle"], false, <PTOKEN_PRIVILEGES Struct Here>, 0, 
nil, nil)

According to the MSDN documentation on AdjustTokenPrivileges 
(http://msdn.microsoft.com/en-us/library/windows/desktop/aa375202%28v=vs.85%29.aspx), the PTOKEN_PRIVILEGES struct 
should look something like this:
privileges = {"PrivilegeCount" => 2, "Privileges" => [{"Luid" => SeIncreaseQuotaPrivilege["lpLuid"], "Attributes" => 
2}, {"Luid" => SeIncreaseQuotaPrivilege["lpLuid"], "Attributes" => 2}]} #Ruby syntax

Obviously this complicated struct needs to be packed somehow using Ruby's "pack" command, but the problem is that I 
have no idea how to begin.  I can't find any documentation or any other modules which do anything similarly complex.
The closest code I found was in Metasm source: 
https://github.com/rapid7/metasploit-framework/blob/master/lib/metasm/metasm/os/windows.rb
I couldn't seem to figure out how to translate this to my method using Railgun, or call the Metasm module and methods 
in that file directly.

I'm sure this is probably pretty simple, I just need a little guidance.

Thanks in advance,
shellster

_______________________________________________
https://mail.metasploit.com/mailman/listinfo/framework