Simple play icon Course
Skills Expanded

Post Exploitation with PowerShell

by Ricardo Reimao

After gaining access to a server in a red team engagement, your next step is to escalate your privileges and establish persistence. This course will teach you post-exploitation techniques with PowerShell.

Preview this course

What you'll learn

In a red team engagement, after getting initial access to your target environment, you need to escalate your privileges, establish persistence and execute your goals. As your objective is to stay stealthy, the best option is to leverage Windows native features, such as PowerShell, to conduct your post-exploitation activities. In this course, Post-Exploitation with PowerShell, you’ll learn how to execute all your post-exploitation activities using only Windows native commands. First, you’ll explore how to escalate your privileges in the compromised system. Next, you’ll discover how to create persistence so you can access the system at any time. Finally, you’ll learn how to collect and exfiltrate sensitive data. When you’re finished with this course, you’ll have the skills and knowledge of PowerShell needed to perform post-exploitation on a red team.

Table of contents

Course Overview
1min
Local Privilege Escalation
42mins
Creating Persistence
31mins
Collection and Exfiltration
32mins

About the author

Ricardo Reimao

Ricardo is a Cybersecurity Consultant based in Toronto (Canada). He has 14+ years of IT experience, 10 of them in the IT Security field. His main interests are: SIEM solutions (IBM QRadar), Enterprise Security Risk, Penetration Testing, Security processes/procedures and Network Security.

See more courses by Ricardo Reimao
Ready to upskill? Get started