Post-infiltration operation (1)

Enterprise 2023-05-04 20:44:37 views: null

After obtaining the remote control right of the target machine through Trojan horses or vulnerabilities, the next step is the post-infiltration process. Meterpreter can be regarded as an advanced backdoor tool that supports multiple operating platforms, which can realize privilege escalation, information capture, system monitoring, springboard attacks and Intranet expansion and other diverse functional features.

1. Access the file system

There are the following common instructions for accessing the file system: It can be seen that if the operation is performed on the attack aircraft, most operations are performed on the target aircraft, and there is one more l, which is roughly the same as the instructions under linux.

cat | read file content                         

cd | switch target machine directory                          

cp | copy files to target                        

mv | move to target                    

chmod | Modify file permissions (such as chmod 777 shell.elf) 

del / rm | delete target file                          

dir/ls | print target directory                         

mkdir | Create a directory on the target machine                      

rmdir | Delete target machine directory                         

 edit | edit file                              

getlwd | print local directory (what is the current path)                       

getwd | print target directory                          

lcd | change local directory                           

lls | list local directories                                          

lpwd | print local directory                         

pwd | print working directory                         

search | search file details search -h   

2. Upload and download files

After entering the directory where the file needs to be uploaded through cd, find the file to be uploaded in the attacking machine through lcd, and then upload the file to the target location through upload + file path. Download the file in the same way as download + file.

First use ls to view the target machine directory, make sure to put it in this directory

Use lls and lcd to find the files that need to be uploaded, and then upload:

Check the corresponding file again:

 

 3. Screenshots

screenshot | command is enough.

4. Keylogging

keyscan_start | Start keylogger (Windows) |

keyscan_dump | Export Keyboard (Windows) |

keyscan_stop | Stop keylogging (Windows) |

Start to record from start, stop to stop, and dump is the record from start to dump.

Guess you like

Origin blog.csdn.net/hmysn/article/details/128431994
Recommended
Arc Browser for Windows 1.0 officially GA
A programmer born in the 1990s developed a video porting software and made over 7 million in less than a year. The ending was very punishing!
Ranking
1. Select Sort
Create a thread thread
3 press to play ball that reach 6
Programmation CUDA (4) : gestion de la mémoire
SpringBoot database connection pool Druid error
E Diudiu App redesign summary
4EVERLAND Hosting now supports SNS+IPFS
About HTTPS
[vue3+vite+ts+element-plu+sass] uses bug records in sass
Interpretation of HUAWEI CLOUD GaussDB (for Influx): Best Practice Data Modeling
Daily
More
2024-05-03(8)
2024-05-02(0)
2024-05-01(4)
2024-04-30(36)
2024-04-29(5)
2024-04-28(12)
2024-04-27(29)
2024-04-26(22)
2024-04-25(32)
2024-04-24(30)

Code World

© 2018 codetd.com