Job Types

Command --> Aggressor Script --> UI

NOTE: Some approaches are used differently (example: Process injection spawn vs Process injection explicit) See Process Injection for more details

Last updated 8 months ago

hashtagCommand --> Aggressor Script --> UI

hashtag1) chromedump (Command)

hashtag2) dcsync --> &bdcsync

hashtag3) elevate --> &belevate --> [beacon] -> Access -> Elevate

hashtag4) [beacon] -> Access -> Golden Ticket (UI)

hashtag5) hashdump --> &bhashdump --> [beacon] -> Access -> Dump Hashes

hashtag6) keylogger --> &bkeylogger --> [Process Browser] -> Log Keystrokes

hashtag7) logonpasswords --> &blogonpasswords --> [beacon] -> Access -> Run Mimikatz

hashtag8) [beacon] -> Access -> Make Token (use a hash) (UI)

hashtag9) mimikatz --> &bmimikatz

hashtag10) &bmimikatz_small (Aggressor Script)

hashtag11) net --> &bnet --> [beacon] -> Explore -> Net View

hashtag12) portscan --> &bportscan --> [beacon] -> Explore -> Port Scan

hashtag13) powerpick --> &bpowerpick

hashtag14) printscreen --> &bprintscreen

hashtag15) pth --> &bpassthehash

hashtag16) runasadmin --> &brunasadmin

hashtag17) [target] -> Scan (UI)

hashtag18) screenshot --> &bscreenshot --> [beacon] -> Explore -> Screenshot ([Process Browser]) -> Screenshot (Yes)

hashtag19) screenwatch --> &bscreenwatch --> [Process Browser] -> Screenshot (No)

hashtag20) ssh --> &bshh --> [target] -> jump -> ssh

hashtag21) ssh-key --> &bssh_key --> [target -> jump -> ssh-key

hashtag22) [target] -> jump -> [exploit] (use a hash)

hashtag23) browserpivot --> &bbrowserpivot --> [beacon] -> Explore -> Browser Pivot

hashtag24) dllinject --> &bdllinject

hashtag25) inject --> &binject --> [Process Browser] -> Inject

hashtag26) shinject --> &bshinject

hashtagNOTE: Some approaches are used differently (example: Process injection spawn vs Process injection explicit) See Process Injection for more details

hashtag27) psinject --> &bpsinject

Command --> Aggressor Script --> UI

1) chromedump (Command)

2) dcsync --> &bdcsync

3) elevate --> &belevate --> [beacon] -> Access -> Elevate

4) [beacon] -> Access -> Golden Ticket (UI)

5) hashdump --> &bhashdump --> [beacon] -> Access -> Dump Hashes

6) keylogger --> &bkeylogger --> [Process Browser] -> Log Keystrokes

7) logonpasswords --> &blogonpasswords --> [beacon] -> Access -> Run Mimikatz

8) [beacon] -> Access -> Make Token (use a hash) (UI)

9) mimikatz --> &bmimikatz

10) &bmimikatz_small (Aggressor Script)

11) net --> &bnet --> [beacon] -> Explore -> Net View

12) portscan --> &bportscan --> [beacon] -> Explore -> Port Scan

13) powerpick --> &bpowerpick

14) printscreen --> &bprintscreen

15) pth --> &bpassthehash

16) runasadmin --> &brunasadmin

17) [target] -> Scan (UI)

18) screenshot --> &bscreenshot --> [beacon] -> Explore -> Screenshot ([Process Browser]) -> Screenshot (Yes)

19) screenwatch --> &bscreenwatch --> [Process Browser] -> Screenshot (No)

20) ssh --> &bshh --> [target] -> jump -> ssh

21) ssh-key --> &bssh_key --> [target -> jump -> ssh-key

22) [target] -> jump -> [exploit] (use a hash)

23) browserpivot --> &bbrowserpivot --> [beacon] -> Explore -> Browser Pivot

24) dllinject --> &bdllinject

25) inject --> &binject --> [Process Browser] -> Inject

26) shinject --> &bshinject

NOTE: Some approaches are used differently (example: Process injection spawn vs Process injection explicit) See Process Injection for more details

27) psinject --> &bpsinject