< All Advanced Penetration Testing Notes

bltsec | Advanced Penetration Testing | Module 10 - Post Exploitation

By: bltsec | Related Course: Advanced Penetration Testing | Published: July 27, 2017 | Modified: July 27, 2017
Join Cybrary

NotepadPost Exploitation (Part 1) File Transfer w/o Interactive Shell

Post Exploitation (Part 1) File Transfer w/o Interactive Shell:

Meterpreter shell: hashdump command, upload and download commands, TFTP, SFTP, netcat, meterpreter scripts(may be phased out and turned into post-exploitation modules), run getgui is an example of one. /usr/share/metasploit/script or use post/windows/gather

cd /usr/share/exploitdb
which holds searchsploit 
# found ubuntu vulnerabilty by using udevadm –version and 124 was displayed and anything under 140 something is vulnerable to the below exploit
./searchsploit udev
# we need to generate shellcode for the c code exploit


NotepadPost Exploitation (Part 2) Exploit Development

Post Exploitation (Part 2) Exploit Development:

 


< All Advanced Penetration Testing Notes
Join Cybrary

Our Revolution

We believe Cyber Security training should accessible for everyone, everywhere. Everyone deserves the OPPORTUNITY to learn, begin and grow a career in this fascinating field. Therefore, Cybrary is the world's largest community where people, companies and training come together to give everyone the ability to collaborate in an open source way that is revolutionizing the cyber security educational experience.

We recommend always using caution when following any link

Are you sure you want to continue?

Continue
Cancel