本文列举了Meterpreter会话中常用的核心命令,包括帮助菜单、会话管理、文件系统操作、网络命令、系统控制和用户界面交互等功能。此外,还提到了网络摄像头和音频输出的控制,以及权限提升和密码数据库相关的命令。内容旨在帮助安全研究者理解和使用这些工具。
目录
声明:文中所涉及的技术、思路和工具仅供以安全为目的的学习交流使用,任何人不得将其用于非法用途以及盈利等目的,否则后果自行承担。所有渗透都需获取授权!
一、闲话部分
由于大部分是通过机翻,个别意思可能会出现不符的情况,欢迎大家指出问题和补充
这里帮助大家理解和使用个别指令代码的使用以及不清楚该代码有何作用,这里帮助大家做了一个汇总
二、正文部分
Core Commands(核心命令)
=======================
Command (命令) Description(描述)
------- -----------
? Help menu(帮助菜单)
background Backgrounds the current session(当前会议背景)
bg Alias for background(背景别名)
bgkill Kills a background meterpreter script(终止后台计量器脚本)
bglist Lists running background scripts(列出正在运行的后台脚本)
bgrun Executes a meterpreter script as a background thread(作为后台线程执行meterpreter脚本)
channel Displays information or control active channels(显示信息或控制活动通道)
close Closes a channel(关闭通道)
detach Detach the meterpreter session (for http/https)(分离meterpreter会话(用于http/https))
disable_unic Disables encoding of unicode strings(禁用unicode字符串编码)
ode_encoding
enable_unico Enables encoding of unicode strings(启用unicode字符串编码)
de_encoding
exit Terminate the meterpreter session(终止计量器会话)
get_timeouts Get the current session timeout values(获取当前会话超时值)
guid Get the session GUID(获取会话GUID)
help Help menu(帮助菜单)
info Displays information about a Post module(显示Post模块的信息)
irb Open an interactive Ruby shell on the current session(在当前会话上打开交互式Ruby shell)
load Load one or more meterpreter extensions(加载一个或多个meterpreter扩展)
machine_id Get the MSF ID of the machine attached to the session(获取连接到会话的机器的MSF ID)
migrate Migrate the server to another process(将服务器迁移到另一个进程管理枢轴监听器)
pivot Manage pivot listeners(管理枢轴监听器)
pry Open the Pry debugger on the current session(打开当前会话上的Pry调试器)
quit Terminate the meterpreter session(终止计量器会话)
read Reads data from a channel(从通道读取数据)
resource Run the commands stored in a file(运行存储在文件中的命令)
run Executes a meterpreter script or Post module(执行计量器脚本或Post模块)
secure (Re)Negotiate TLV packet encryption on the session((Re)在会话上协商TLV报文加密)
sessions Quickly switch to another session(快速切换到其他会话)
set_timeouts Set the current session timeout values(设置当前会话超时值)
sleep Force Meterpreter to go quiet, then re-establish session(强制Meterpreter静音,然后重新建立会话)
ssl_verify Modify the SSL certificate verification setting(修改SSL证书验证设置)
transport Manage the transport mechanisms(管理传输机制)
use Deprecated alias for "load"(已弃用的“load”别名)
uuid Get the UUID for the current session(获取当前会话的UUID通道)
write Writes data to a channel(将数据写入通道)
Stdapi: File system Commands(文件系统命令)
============================
Command Description
------- -----------
cat Read the contents of a file to the screen(将文件的内容读到屏幕上)
cd Change directory(改变当前工作目录)
checksum Retrieve the checksum of a file(检索文件的校验和文件)
cp Copy source to destination(将源复制到目标)
del Delete the specified file(删除指定的文件)
dir List files (alias for ls)(列表文件(Is的别名))
download Download a file or directory(下载文件或目录)
edit Edit a file(编辑一个文件)
getlwd Print local working directory(打印本地工作目录)
getwd Print working directory(打印工作目录)
lcat Read the contents of a local file to the screen(将本地文件的内容读入屏幕)
lcd Change local working directory(.更改本地工作目录)
lls List local files(列出本地文件)
lpwd Print local working directory(打印本地工作目录)
ls List files(列出文件()
mkdir Make directory(做目录)
mv Move source to destination(将源移动到目标)
pwd Print working directory(打印工作目录)
rm Delete the specified file(删除指定文件)
rmdir Remove directory(删除目录)
search Search for files(搜索文件)
show_mount List all mount points/logical drives(列出所有挂载点/逻辑驱动器()
upload Upload a file or directory(上传文件或目录)
Stdapi: Networking Commands(网络命令)
===========================
Command Description
------- -----------
arp Display the host ARP cache(显示主机ARP缓存)
getproxy Display the current proxy configuration(显示当前代理配置)
ifconfig Display interfaces(显示接口)
ipconfig Display interfaces(显示接口)
netstat Display the network connections(显示网络连接)
portfwd Forward a local port to a remote service(将本地端口转发到远端服务)
resolve Resolve a set of host names on the target(解析目标器上的一组主机名)
route View and modify the routing table(查看和修改路由表)
Stdapi: System Commands(系统命令)
=======================
Command Description
------- -----------
clearev Clear the event log(清除事件日志)
drop_token Relinquishes any active impersonation token.(放弃任何活动模拟令牌)
execute Execute a command(执行命令)
getenv Get one or more environment variable values(获取一个或多个环境变量值)
getpid Get the current process identifier(获取当前进程标识符)
getprivs Attempt to enable all privileges available to the current process(尝试启用当前进程可用的所有特权)
getsid Get the SID of the user that the server is running as(获取服务器作为用户运行的SID)
getuid Get the user that the server is running as(获取服务器运行时的用户)
kill Terminate a process(终止流程)
localtime Displays the target system local date and time(显示目标系统本地日期和时间)
pgrep Filter processes by name(按名称筛选进程)
pkill Terminate processes by name(按名称终止进程)
ps List running processes(列出正在运行的进程)
reboot Reboots the remote computer(重新启动远程计算机)
reg Modify and interact with the remote registry(修改远程注册表并与之交互)
rev2self Calls RevertToSelf() on the remote machine(在远程机器上调用RevertToSelf())
shell Drop into a system command shell(拖放到系统命令shell中)
shutdown Shuts down the remote computer(关闭远程计算机)
steal_token Attempts to steal an impersonation token from the target process(试图从目标进程窃取模拟令牌)
suspend Suspends or resumes a list of processes(挂起或恢复进程列表)
sysinfo Gets information about the remote system, such as OS(获取有关远程系统的信息,如操作系统)
Stdapi: User interface Commands(用户界面命令)
===============================
Command Description
------- -----------
enumdesktops List all accessible desktops and window stations(列出所有可访问的桌面和窗口工作站)
getdesktop Get the current meterpreter desktop(获取当前计量器桌面)
idletime Returns the number of seconds the remote user has been idle(返回远程用户空闲的秒数)
keyboard_sen Send keystrokes(发送按键)
d
keyevent Send key events(发送关键事件)
keyscan_dump Dump the keystroke buffer(转储击键缓冲区)
keyscan_star Start capturing keystrokes(开始捕捉击键)
t
keyscan_stop Stop capturing keystrokes(停止捕捉击键)
mouse Send mouse events(发送鼠标事件)
screenshare Watch the remote user desktop in real time(实时查看远程用户桌面)
screenshot Grab a screenshot of the interactive desktop(抓取交互式桌面的截图)
setdesktop Change the meterpreters current desktop(更改仪表当前桌面)
uictl Control some of the user interface components(控制一些用户界面组件)
Stdapi: Webcam Commands(网络摄像头命令)
=======================
Command Description
------- -----------
record_mic Record audio from the default microphone for X seconds(从默认麦克风录制音频X秒i)
webcam_chat Start a video chat(开始视频聊天)
webcam_list List webcams(网络摄像头列表)
webcam_snap Take a snapshot from the specified webcam(从指定的网络摄像头拍摄快照)
webcam_strea Play a video stream from the specified webcam(播放指定摄像头的视频流)
m
Stdapi: Audio Output Commands(音频输出命令)
=============================
Command Description
------- -----------
play play a waveform audio file (.wav) on the target system(在目标系统上播放波形音频文件(.wav))
Priv: Elevate Commands(提升命令)
======================
Command Description
------- -----------
getsystem Attempt to elevate your privilege to that of local system.(试图把你的特权提升到当地制度的地位。)
Priv: Password database Commands(密码数据库命令)
================================
Command Description
------- -----------
hashdump Dumps the contents of the SAM database(转储SAM数据库的内容)
Priv: Timestomp Commands
========================
Command Description
------- -----------
timestomp Manipulate file MACE attributes(操作文件MACE属性)
三、不要脸求点赞、评论、关注部分
喜欢的同学请动动小手点个赞,收藏一下,有问题请在评论区指出或者私聊,转载请注明出处,并附有原文链接,谢谢,你们的支持是我坚持的动力!!!
学习网络安全,千万不要学会后去做违法的事情,禁止对未授权的网站进行攻击
我们要当举起网络安全的旗子,打造安全的绿色的网络环境,保护环境人人有责,感谢诸位
扫一扫
3192
被折叠的 条评论
为什么被折叠?
到【灌水乐园】发言
