Home Metasploit @en Archive for Post-Exploitation
Blog Archives

Packet sniffing from Meterpreter

Posted on 15 January, 2014 by Ignacio Sorribas 4 Comments ↓

Following with the post chain about Meterpreter extensions, I’m going to show you how “sniffer” extension works. This module let’s you capture traffic from one network interface of the victim host and dump it to a “pcap” file on the

Read more ›

Posted in Metasploit, Meterpreter, Post-Exploitation, Sniffer

Mimikatz Meterpreter extension

Posted on 9 January, 2014 by Ignacio Sorribas 2 Comments ↓

During a PenTest one of the main objectives of the PenTester when a Windows host is compromised is to obtain the user authentication hashes, to try pivot to other systems on the target network using the “Pass The Hash” attack.

Read more ›

Posted in Metasploit, mimikatz, Post-Exploitation

Post-Exploitation with “Incognito”.

Posted on 9 January, 2014 by Ignacio Sorribas 1 Comment ↓

Incognito is a tool used to escalate privileges inside an Active Directory domain on the post exploitation phase of a PenTest. It was born as a standalone tool, later was included in Metasploit as a module and finally it was

Read more ›

Posted in Incognito, Metasploit, Post-Exploitation