DiscordHackTheBoxTryHackMeGitHub

WinRM

The Windows Remote Management (WinRM) is a simple Windows integrated remote management protocol based on the command line. WinRM uses the Simple Object Access Protocol (SOAP) to establish connections to remote hosts and their applications. WinRM relies on TCP ports 5985 and 5986 for communication, with the last port 5986 using HTTPS. Services like remote sessions using PowerShell and event log merging require WinRM.

Tips2Hack

  1. Nmap WinRM

nmap -sV -sC 13.13.13.13 -p5985,5986 --disable-arp-ping -n

  1. Evil-WinRM

evil-winrm -i 13.13.13.13 -u venator17 -p S3cr3t!

  1. CrackMapExec

crackmapexec winrm 10.129.42.197 -u user.list -p passwor
PreviousR-ServicesNextWMI

Last updated