Core commands 核心命令 background: Backgrounds the current session background :当前会话的背景 exit: Terminate the Meterpreter session exit :终止 Meterpreter 会话 guid: Get the session GUID (Globally Unique Identifier) guid :获取会话 GUID(全局唯一标识符) help: Displays the help menu help :显示帮助菜单 info: Displays information about a Post module info :显示有关 Post 模块的信息 irb: Opens an interactive Ruby shell on the current session irb :在当前会话上打开交互式 Ruby shell load: Loads one or more Meterpreter extensions load :加载一个或多个 Meterpreter 扩展 migrate: Allows you to migrate Meterpreter to another process migrate :允许您将 Meterpreter 迁移到另一个进程 run: Executes a Meterpreter script or Post module run :执行 Meterpreter 脚本或 Post 模块 sessions: Quickly switch to another session sessions :快速切换到另一个会话 File system commands 文件系统命令
cd: Will change directory cd :将更改目录 ls: Will list files in the current directory (dir will also work) ls :将列出当前目录中的文件(dir也可以) pwd: Prints the current working directory pwd :打印当前工作目录 edit: will allow you to edit a file edit :允许您编辑文件 cat: Will show the contents of a file to the screen cat :将文件的内容显示到屏幕上 rm: Will delete the specified file rm :将删除指定文件 search: Will search for files search :将搜索文件 upload: Will upload a file or directory upload :将上传文件或目录 download: Will download a file or directory download :将下载文件或目录 Networking commands 联网命令
arp: Displays the host ARP (Address Resolution Protocol) cache arp :显示主机ARP(地址解析协议)缓存 ifconfig: Displays network interfaces available on the target system ifconfig :显示目标系统上可用的网络接口 netstat: Displays the network connections netstat :显示网络连接 portfwd: Forwards a local port to a remote service portfwd :将本地端口转发到远程服务 route: Allows you to view and modify the routing table route :允许查看和修改路由表 System commands 系统命令
clearev: Clears the event logs clearev :清除事件日志 execute: Executes a command execute :执行命令 getpid: Shows the current process identifier getpid :显示当前进程标识符 getuid: Shows the user that Meterpreter is running as getuid :显示 Meterpreter 正在运行的用户 kill: Terminates a process kill :终止进程 pkill: Terminates processes by name pkill :按名称终止进程 ps: Lists running processes ps :列出正在运行的进程 reboot: Reboots the remote computer reboot :重新启动远程计算机 shell: Drops into a system command shell shell :进入系统命令 shell shutdown: Shuts down the remote computer shutdown :关闭远程计算机 sysinfo: Gets information about the remote system, such as OS sysinfo :获取远程系统的信息,例如操作系统 Others Commands (these will be listed under different menu categories in the help menu) 其他命令(这些命令将在帮助菜单中的不同菜单类别下列出)
idletime: Returns the number of seconds the remote user has been idle idletime :返回远程用户空闲的秒数 keyscan_dump: Dumps the keystroke buffer keyscan_dump :转储击键缓冲区 keyscan_start: Starts capturing keystrokes keyscan_start :开始捕获击键 keyscan_stop: Stops capturing keystrokes keyscan_stop :停止捕获击键 screenshare: Allows you to watch the remote user's desktop in real time screenshare :允许您实时观看远程用户的桌面 screenshot: Grabs a screenshot of the interactive desktop screenshot :抓取交互式桌面的屏幕截图 record_mic: Records audio from the default microphone for X seconds record_mic :从默认麦克风录制音频 X 秒 webcam_chat: Starts a video chat webcam_chat :开始视频聊天 webcam_list: Lists webcams webcam_list :列出网络摄像头 webcam_snap: Takes a snapshot from the specified webcam webcam_snap :从指定的网络摄像头拍摄快照 webcam_stream: Plays a video stream from the specified webcam webcam_stream :播放指定网络摄像头的视频流 getsystem: Attempts to elevate your privilege to that of local system getsystem :尝试将您的权限提升到本地系统的权限 hashdump: Dumps the contents of the SAM database hashdump :转储 SAM 数据库的内容
ps后可以迁移到指定pid migrate 716
load加载指定工具
如load kiwi加载猕猴桃
use exploit/windows/smb/psexec
//系统信息 sysinfo
//域名 ctrl z use post/windows/gather/enum_domain set session 1 run
