Some quick notes for interesting stuff to keep for CCDC Quals/Notes
Rapid Fire PSExec
Use db_nmap to scan and populate the databse or db_import to import nmap xml into your workspace. This one uses open port 445 to query the database
This one uses open service of smb to query the database
Running Metasploit Post modules against all sessions
Resource script to run a single post module against all sessions. Navigate to your post module, set up any required options then run this resource script.
Got this from: https://k0st.wordpress.com/2015/07/10/running-commands-on-multiple-meterpreter-sessions/
Update: Dre mentioned his already exists here:
Running a Meterpreter Command against all sessions
Got the code from mubix
Running a Windows command against all sessions
This functionality is already built into the sessions command
Just run sessions -s meter_script and if you don’t put a session to interact with it will run on all sessions.
This is a Security Bloggers Network syndicated blog post authored by CG. Read the original post at: Carnal0wnage & Attack Research Blog