Pentesting

Meterpreter

What is Meterpreter?

  • A Metasploit payload that supports the penetration testing process with many valuable components

  • Runs on the target system and act as an agent within a command and control architecture

  • Interacts with the target operating system and files and use Meterpreter's specialized commands

How does it work?

  • Meterpreter runs on the target system but is not installed on it.

  • Runs in memory and does not write itself to the disk on the target

    • This way it avoids having a file that has to be written to the disk on the target system

    • Meterpreter will be seen as a process and not have a file on the target system

  • Aims to avoid being detected by network-based IPS and IDS solutions by using encrypted communication with the server where Metasploit runs

PreviousMetasploitNextShell Handler

Last updated