💾 Archived View for freeshell.de › tldr › evil-winrm.gmi captured on 2022-06-11 at 21:43:14. Gemini links have been rewritten to link to archived content
⬅️ Previous capture (2022-04-28)
-=-=-=-=-=-=-
Windows Remote Management (WinRM) shell for pentesting.
Once connected, we get a PowerShell prompt on the target host.
evil-winrm --ip {ip} --user {user} --password {password}
evil-winrm --ip {ip} --user {user} --hash {nt_hash}
evil-winrm --ip {ip} --user {user} --password {password} --scripts {path/to/scripts} --executables {path/to/executables}
evil-winrm --ip {ip} --user {user} --password {password} --ssl --pub-key {path/to/pubkey} --priv-key {path/to/privkey}
PS > upload {path/to/local/file} {path/to/remote/file}
PS > menu
PS > {script.ps1}
PS > Invoke-Binary {binary.exe}
Copyright © 2014—present the tldr-pages team and contributors.
This work is licensed under the Creative Commons Attribution 4.0 International License (CC-BY).