Experienced migrating process (example: explorer.exe), load the extension priv and then hashdump??
You can use the kitrap0d to privilege escalation as well!
Sorry, my bad english!
Regards,
Using Chained Exploits - Metasploit/Meterpreter
Skid Rock: Using Chained Exploits - Metasploit and Meterpreter
Quick little summary on the steps I used within the Metasploit Framework to go from user level access to system level privileges on a Windows machine.
This was done using the built in route capabilities of the powerful Meterpreter shell.
I got 99 problems but the bits ain't one...
Re: Using Chained Exploits - Metasploit/Meterpreter
Experienced migrating process (example: explorer.exe), load the extension priv and then hashdump??
You can use the kitrap0d to privilege escalation as well!
Sorry, my bad english!
Regards,
(gdb) disass m(y_br)ain
®
Re: Using Chained Exploits - Metasploit/Meterpreter
Unfortunately those methods won't always work...that's where the technique illustrated may come in handy!
I got 99 problems but the bits ain't one...
Re: Using Chained Exploits - Metasploit/Meterpreter
I had to register an account just to reply and say this is genius. So simple, it's one of those things I can't believe I didn't think of before.Originally Posted by skidmarq
I'm not sure there's any other documentation pointing to using metasploit this way (pivoting to locahost, not pivoting in general) - first I've seen of it at least. You sort of need the perfect storm of conditions to make it worthwhile, but that doesn't make it any less cool. Thanks for the tip dude!
Re: Using Chained Exploits - Metasploit/Meterpreter
Hello,
If you use kitrap0d the AV will start to react, most of them have a definition set for kitrap0d.
+
Posting Permissions
