Using ps
For this example, we’ll use the Meterpreter function ps
to list the applications running and show under which account they are running. We’ll use the domain name SNEAKS.IN and the user account ihazdomainadmin .
meterpreter > ps
Process list
============
PID Name Arch Session User Path
--- ---- ---- ------- ---- ----
0 [System Process]
4 System x86 0 NT AUTHORITY\SYSTEM
380 cmd.exe x86 0 SNEAKS.IN\ihazdomainadmin \System\ Root\System32\cmd.exe ...
Get Metasploit now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.