Maintaining Access

Persistence Scripts (Metasploit)

These are dangerous, should not be run on a standard penetration test

  • run persistence -h

  • exploit/windows/local/persistence

  • exploit/windows/local/registry_persistence

Scheduled Tasks

  • run scheduleme

  • run schtaskabuse

Add a user

Windows

net user [username] [password] /add

Linux

useradd [username]
PreviousExtracting PasswordsNextTunneling / Pivoting

Last updated