Hello all,
I wanted to post this in the "Articles" Section
I was looking to see if anyone has some guides that they use when red teaming / pen testing / hacking a company.
Of course I can find some on the normal web, but they dont go as in depth as I am looking for.
I'm using Cobalt Strike and Metasploit along with PowerSploit and random other tools.
What is your process or a guide that you do after you have initial access (Low priv)
One of the main reasons i'm asking,
I have basically a default windows 10 pc with a beacon sitting on it. After lookin at winpeas, WES, privesscheck all i can find is the default windows DLLs and it suggestes DLLHijacking DLLInjection but requires a reboot if i set that up to call my new one.
There has got to be a better way to not alert the user.
looking for any guides comments ideas on this.
Looking to learn from the Pros.
Thank you.
I'm assuming most pros wont let me watch a live engaugement
I wanted to post this in the "Articles" Section
I was looking to see if anyone has some guides that they use when red teaming / pen testing / hacking a company.
Of course I can find some on the normal web, but they dont go as in depth as I am looking for.
I'm using Cobalt Strike and Metasploit along with PowerSploit and random other tools.
What is your process or a guide that you do after you have initial access (Low priv)
One of the main reasons i'm asking,
I have basically a default windows 10 pc with a beacon sitting on it. After lookin at winpeas, WES, privesscheck all i can find is the default windows DLLs and it suggestes DLLHijacking DLLInjection but requires a reboot if i set that up to call my new one.
There has got to be a better way to not alert the user.
looking for any guides comments ideas on this.
Looking to learn from the Pros.
Thank you.
I'm assuming most pros wont let me watch a live engaugement