Overview
This course aims to familiarize learners with the advancements in Meterpreter, a tool widely used in Metasploit for red team engagements. The course covers both old and new features of Meterpreter, focusing on how the new features can enhance red team operations. Learners will explore topics such as stageless payloads, transport modification, paranoid mode, and persistence. The teaching method includes discussing features at a high level and delving into technical details. The course is intended for individuals interested in cybersecurity, particularly red teamers looking to strengthen their network penetration skills.
Syllabus
Intro
Background knowledge
The new shiny
Extended API (extapi)
extapi - adsi_domain_query
extapi - Service enumeration
extapi - Service control
extapi - Clipboard
Mimikatz 2.0 (kiwi)
Recap - stagers
Recap - WinINET vs WinHTTP
Recap - Establishing Meterpreter
Stager and Stage Changes
Configuration Block
Configuration requirements
Transport Data URLS
Stageless Configuration
Taught by
44CON Information Security Conference