Home > Developer > Web Develop

Meterpreter command in Metasploit

Source: Internet
Author: User
Developer on Alibaba Coud: Build your first app with APIs, SDKs, and tutorials on the Alibaba Cloud. Read more >

Meterpreter is a killer in the Metasploit framework, usually used as an attack payload after a vulnerability overflow, and the attack payload can be returned to us as a control channel after the vulnerability is triggered.

Common Meterpreter Commands

  2. Run ScriptName runs the Meterpreter script, where you can see all the script names in the Scripts/meterpreter directory.
  4. SysInfo lists system information for the managed host.
  6. LS lists the file and folder information for the target host.
  8. Use Priv to load the elevation of Privilege extension module to extend the Meterpreter library.
  10. PS Displays all running processes and associated user accounts.
  12. Migrate PID is migrated to a specified process ID (PID can be obtained from the target host via PS).
  14. Use Incognito loads the Incognito function (used to steal the target host's token or impersonate the user).
  16. List_tokens-u lists the available tokens for the target host user.
  18. LIST_TOKENS-G lists the available tokens for the target host user group.
  20. Impersonate_token Domain_name\\username the available tokens on the target host.
  22. The Steal_token PID steals the available tokens for a given process and makes a token impersonation.
  24. Drop_token Stop impersonating the current token.
  26. Getsystem uses various attack vectors to elevate system user rights.
  28. The shell runs an interactive shell with all available tokens.
  30. Execute-f Cmd.exe-i executes the cmd.exe command and interacts.
  32. Execute-f Cmd.exe-i-T executes the cmd command with all available tokens.
  34. Execute-f cmd.exe-i-h-t executes the cmd command with all the available tokens and hides the process.
  36. Rev2self back to the initialized user account that controls the target host.
  38. The reg command interacts, creates, deletes, queries, and so on in the target host registry.
  40. Setdesktop number switches to another user interface (the feature is based on which users are logged on).
  42. Screenshot to the screen of the target host.
  44. Upload file uploads files to the target host
  46. Download file downloads files from the target host.
  48. Keyscan_start enable keylogger for remote target host.
  50. Keyscan_dump stores the keylogger captured on the target host.
  52. Keyscan_stop stops the Keylogger function for the target host.
  54. Getprivs as much as possible to get privileges on the target host.
  56. Uictl enable Keyboard/mouse takes over the target host's keyboard and mouse.
  58. Background your current Meterpreter shell to the background.
  60. Hashdump Export the password hash value in the destination host.
  62. Use sniffer to load the sniffer module.
  64. Sniffer_interfaces lists all open network interfaces of the target host.
  66. Sniffer_dump InterfaceID pcapname start sniffing on the target host.
  68. Sniffer_stats InterfaceID Gets the statistics that are implementing the sniffer network interface.
  70. Sniffer_start InterfaceID Packet-buffer initiates a sniffer on the target host for a specific range of packet buffers.
  72. Sniffer_stop InterfaceID stop sniffing.
  74. Add_user username password-h IP Adds a user to the remote destination host.
  76. Add_group_user "Domain Admins" username-h IP adds the user to the Domain Admins group of the target host.
  78. Clearev clears the log records on the target host.
  80. Timestomp modify file properties, such as modifying the creation time of a file (anti-forensics investigation).
  82. Reboot restart the target host.

Meterpreter command in Metasploit

This article is an English version of an article which is originally in the Chinese language on aliyun.com and is provided for information purposes only. This website makes no representation or warranty of any kind, either expressed or implied, as to the accuracy, completeness ownership or reliability of the article or any translations thereof. If you have any concerns or complaints relating to the article, please send an email, providing a detailed description of the concern or complaint, to info-contact@alibabacloud.com. A staff member will contact you within 5 working days. Once verified, infringing content will be removed immediately.

Related Keywords:
metasploit linux metasploit project metasploit pdf metasploit framework metasploit price metasploit android metasploit video

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

What's Trending
Top 10 Tags
datastax versions naming convention zookeeper client class definition md5 microsoft sql server 2005 data structures exception handling error handling
Top 10 Keywords
microsoft download center down wordpress address url site address url wordpress address url windows installer 4 0 download 302 not found web address url definition site address url wordpress db2 integer mac os installation step by step pdf abbreviation for return

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

Get Started for Free

  • Sales Support

    1 on 1 presale consultation

    Chat Contact Sales

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

    Open a Ticket

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.

    Learn More