Powershell Empire : Swiss-Army Knife for Windows Post-Exploitation (Part 2).
So for this entry, we will pickup where we left off. If you not yet read part 1 you can read it here: Powershell Empire : Swiss-Army Knife for Windows Post-Exploitation (Part 1) . I apologize for taking some time to post this due to other commitment and now I have the time to finish this series as I currently on long holiday. To summarize the previous post, we have covered about Empire components and what it do, how to create listener, generating stager, execute the stager, getting connected with the agents and exiting Empire gracefully. So now, we will explore on how to performing post exploitation using module in Empire and do housekeeping tasks on the agents. Side note here, some example shown might have different agent name due to connection lost. But, the essence of the activity and the principal of the action is still the same. Managing Agents To view, list and start interacting with agents registered to your Empire, use command agents . In figure 1, you can see there are 2 act