Skip to content

winrm

install


apt install -y evil-winrm

connect with password - like ssh


evil-winrm -i $IP_DC01 -u $USER -p $PASS 

connect with NTLM hash - like ssh


evil-winrm -i $IP_DC01 -u $USER -H $USER_HASH

evil-winrm - docker


sudo docker run --rm -ti --name evil-winrm oscarakaelvis/evil-winrm -i $IP -u $USER -p $PASS 
sudo docker run --rm -ti --name evil-winrm oscarakaelvis/evil-winrm -i $IP -u svc_apache$ -H 03F4BB79C715487FCC2399404D6D8780

python3 winrm


# sudo pip3 install pywinrm
import winrm
session = winrm.Session('192.168.186.165', auth=('enox','california'), transport='ntlm')
session.run_ps("whoami").std_out