module

Powershell Exec, Windows Upload/Execute, Find Tag Ordinal Stager

Disclosed
N/A
Created
May 11, 2022

Description

Execute an x86 payload from a command via PowerShell.

Uploads an executable and runs it (staged).

Use an established connection

Authors

Spencer McIntyre
vlad902 vlad902@gmail.com
sf stephen_fewer@harmonysecurity.com
skape mmiller@hick.org

Platform

Windows

Architectures

cmd

Module Options

To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':


msf > use payload/cmd/windows/powershell/upexec/find_tag
msf payload(find_tag) > show actions
...actions...
msf payload(find_tag) > set ACTION < action-name >
msf payload(find_tag) > show options
...show and set options...
msf payload(find_tag) > run

Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.