Payloads:
- List compatible payloads:
show payloads
- '/' means the payload is staged
- eg. shell_reverse_tcp vs. shell/reverse_tcp
Meterpreter
- Resides entirely in memory and is encrypted
- Can allow for multiple channels of shells:
#Create shell:
shell
#Background channel:
ctrl + z
#List channels:
channel -l
#Interact with channel:
channel -i <id>
- To simultaneously interact with the local kali system prepend 'l' for common commands, eg. "lls, lpwd, lcd, lcat"
- Using a HTTPS listener instead encrypts the communication, and the page hosting the payload only shows a 404 page not found
- Search for file with Metepreter:
search -f <filename>