WinRM

What is it?

Windows Remote Management. CLI interface for adminstering windows machines

Interact with:

[[../tools/PowerShell]] (windows)
[[../tools/Evil-WinRM]] (Linux)

Establishing WinRM Session from Windows

PS C:\htb> $password = ConvertTo-SecureString "Klmcargo2" -AsPlainText -Force
PS C:\htb> $cred = new-object System.Management.Automation.PSCredential ("INLANEFREIGHT\forend", $password)
PS C:\htb> Enter-PSSession -ComputerName ACADEMY-EA-MS01 -Credential $cred

[ACADEMY-EA-MS01]: PS C:\Users\forend\Documents> hostname
ACADEMY-EA-MS01
[ACADEMY-EA-MS01]: PS C:\Users\forend\Documents> Exit-PSSession
PS C:\htb> 

Connecting to a Target with Evil-WinRM and Valid Credentials

maiamor@htb[/htb]$ evil-winrm -i 10.129.201.234 -u forend

Enter Password: 

Evil-WinRM shell v3.3

Warning: Remote path completions is disabled due to ruby limitation: quoting_detection_proc() function is unimplemented on this machine

Data: For more information, check Evil-WinRM Github: https://github.com/Hackplayers/evil-winrm#Remote-path-completion

Info: Establishing connection to remote endpoint

*Evil-WinRM* PS C:\Users\forend.INLANEFREIGHT\Documents> hostname
ACADEMY-EA-MS01

What is it?​

Interact with:​

Establishing WinRM Session from Windows​

Connecting to a Target with Evil-WinRM and Valid Credentials​

What is it?

Interact with:

Establishing WinRM Session from Windows

Connecting to a Target with Evil-WinRM and Valid Credentials