Ethical Hacking Academy · Lesson

Post-Exploitation Modules

Pivoting and loot.

After the Foothold

Gaining a session is only the beginning. Post-exploitation is everything you do afterward to demonstrate impact: gathering evidence, escalating, and reaching deeper into the network.

Metasploit's post modules automate these tasks against an existing session, all within the authorized scope of the engagement.

Running Post Modules

Post modules act on a session you already have. You load one, point it at the session, and run it. The path structure tells you the platform and purpose.

use post/windows/gather/enum_logged_on_users
set SESSION 1
run

All lessons in this course

Metasploit Architecture
Searching and Using Exploits
Payloads and Meterpreter
Post-Exploitation Modules

← Back to Ethical Hacking Academy