-
Mainly post exploitation for AD environments. (Download — also included in Kali sources) Quick usage for privilege escalation General usage Metasploit syntax / PSE syntax Note: After usemodule don’t forget to go “back” and to “interact” with the agent to see job results! Commands with an asterix require a high-integrity Empire Agent. To upgrade one…
-
Checklist A domain of a DC consists out of the following elements: An object in AD may have a set of ACE Access Control Entries which is called ACL Access Control List. An object’s ACE can be retrieved in PS with Get-ObjectAcl [-Identity| $object. The SCM Service Control Manager contains a database of installed services…
-
Powershell Cmdlets consist out of Verb-Method. To search for a method, type Get-Command New-U* To see all attributes for a Cmdlet, type Get-LocalUser | Get-Member To see specific or non-default attributes, type Get-LocalUser | Select-Object -Property Name,PasswordRequired Examples Directories and files Get all files in the current directory. Get-ChildItem Get all files in the current directory and below.…