Pillaging is the step in which you access sensitive data and intellectual property of the target organization.

Collecting credentials, accounts, IM logs and network information, domains,. intranet servers, shared hard drives. printers.

Network information also be used in the Mapping the internal network phase

Commands to run to collect systeminfo, applications, services, networks, documents, messaging and so on.

1. sysinfo Or cmd.exe systeminfo.
2. getuid
3. run post/windows/gather TAB TAB
4. run post/linux/gather/ TAB TAB
5. similar on shell command wmic service get Caption,StartName, State, pathname. Or net start
6. view domain net view /domain or run enum_domains
7. view domain controller net group "Domain Controllers" /domain
8. view user net user
9. enum AD accounts : run post/windows/gather/enum_ad_users. Or net user /domain.
10. enum resources shared net share Or run enum_shares.
11. ALL in one scraper or winenum.
12. List all application run post/windows/gather/enum_applications.
13. Look for broswer caches. run post/windows/gather/enum_chrome
14. Run SessionGopher