Powered by nishang, PowerSploit
- Run
pack.bat
on the target system(windows 7/8) to penetrant it
- Bypass the UAC
- Extract and excute the payload script
- Turn off the LUA and Firewall
- Add persistence and autorun
- Crawl user's login password
- Download and excute exe file from the remote server
- Excute PowerShellTcp for remote controlling