Meterpreter

Specialized shell that runs on memory (AV Evasion) and encrypts traffic communication with the server Metasploit runs.

PROTIP: Run help command to find the appropriate at the time command to use.

POST EXPLOITATION WITH METERPRETER

Help

Getuid

Getpid

ps

5) (Depending on the process to migrate, we can use key_scan start/stop/dump (word.exe,notepad.exe) to utilize some meterpreter commands) (Privesc/Privdeesc)

migrate

6) (List SAM Database content) (Windows) (Pash-the-Hash/Rainbow Table attacks)

Hashdump

7) (Search flags in CTF, configuration or user-generated files in penetration testing engagements)

Search -f FILE

8) (CTRL + Z to get back to meterpreter)

Shell

PROTIP: We can use load command to load tools that give meterpreter extra functionality (mimikatz: load kiwi)

PreviousMetasploit Framework NextMsfvenom payload

Last updated 7 months ago

hashtagMeterpreter

hashtagSpecialized shell that runs on memory (AV Evasion) and encrypts traffic communication with the server Metasploit runs.

hashtagPROTIP: Run help command to find the appropriate at the time command to use.

hashtagPOST EXPLOITATION WITH METERPRETER

hashtagPROTIP: We can use load command to load tools that give meterpreter extra functionality (mimikatz: load kiwi)

Meterpreter

Specialized shell that runs on memory (AV Evasion) and encrypts traffic communication with the server Metasploit runs.

PROTIP: Run help command to find the appropriate at the time command to use.

POST EXPLOITATION WITH METERPRETER

PROTIP: We can use load command to load tools that give meterpreter extra functionality (mimikatz: load kiwi)