First we found the script console in Manage Jenkins. Found that it uses groovy and found a groovy reverse shell. Its on port 8080.

On kali, I used nc to get the shell.

Then msfvenom to generate the payload to get shell on meterpreter. Why? A standard shell has basic features, whereas Meterpreter is a power tool with many options which we will use below.

Then set up multi/handler to listen on a port.

Load incognito for impersonation.

We are now authority\system but we migrate to another high priveleged service for stealth, stability, features and persistance.

I forgot I was in meterpreter. We create a shell by the "shell" command to use the commands we would normally on a windows shell. and Voila!