Red Team Toolkit
  • 👊Welcome!
  • Methodology
    • MITRE
    • NIST
    • OWASP
    • PTES
    • SANS
  • Reconnaissance
    • DNS Recon
    • Open Source Intelligence
    • Web Application Recon
  • Initial Access
    • Phishing
    • Web Authentication Bypass
    • Network Services Attacks
    • Breaching Active Directory
    • Windows Exploits
    • Linux Exploits
    • SQL Injection
    • XSS
    • Burp Suite
    • Hyrdra
    • Metasploit
    • Nessus
    • Wordlists
    • OWASP ZAP
  • Discovery
    • NMAP
    • PowerView
    • Active Directory Enumeration
    • Windows Post Exploitation Discovery
    • Linux Post Exploitation Discovery
    • Other Scanning Methods
  • Privilege Escalation
    • Password Cracking
    • AD Privilege Escalation
    • Local Windows Privilege Escalation
    • Linux Privilege Escalation
    • Mimikatz
  • Movement
    • Movement
    • Evasion
  • Collection
    • Persistence
    • Exfiltration
  • Other
    • Bookmarks
    • OpeSec
Powered by GitBook
On this page

Was this helpful?

  1. Collection

Persistence

Windows User Administration

Add User on Local Computer

net user /add $USERNAME *

Change Local User Password

net user $USERNAME *

Add New User Account to Domain

net user $USERNAME * /ADD /DOMAIN

Add User to Local Group

net localgroup $GROUPNAME $USERNAME /add

Add user to Remote Desktop User Group

net group "Remote Desktop User" $USERNAME /add

Add user to Domain Group

net group $GROUPNAME $USERNAME /add /domain

Powershell Add Firewall Rule

New-NetFirewallRule -Action Allow -DisplayName Pentester-C2 -RemoteAddress

For persistence section: https://ss64.com/nt/net-config.html

PreviousCollectionNextExfiltration

Last updated 1 year ago

Was this helpful?