We’ve gained access to our target systems, so our penetration test is over, right? We can tell our client that we got a shell on their systems.
But so what? Why would the client care?
In the post-exploitation phase, we will look at information gathering on the exploited systems, privilege escalation, and moving from system to system. Perhaps we’ll find that we can access sensitive data stored on the exploited system or that we have network access to additional systems that we can use to gain further access to company data. Maybe the exploited system is part of a domain, and we can use it to access other systems on the domain. These are just a few of the potential avenues open to us in post exploitation.
Post exploitation ...