Minimal WinTUN Program Access Denied Opening Tun

Jason A. Donenfeld Jason at
Thu Jun 6 12:13:47 CEST 2019

Hey Chris,

Glad to hear you're playing with Wintun. Indeed we're keeping it
locked down to SYSTEM for the time being. As we gain a better
understanding of the attack surface, maybe we'll reduce that to
built-in administrators. But you can pretty easily impersonate SYSTEM
if you have enough admin privs. Here's some code I wrote to do it from
Just replace the "DialPipe" invocation with "os.Open(path/to/wintun)".
Or if you want to do it from C, here's something similar:


More information about the WireGuard mailing list