Become an AceSign inSign up
bohops/ WSMan-WinRM
C++ C# JavaScript
View on GitHub
Need help with WSMan-WinRM?
Click the “chat” button below for chat support from the developer who created it, or find similar developers for support.

About the developer

bohops
132 Stars 23 Forks BSD 3-Clause "New" or "Revised" License 6 Commits 0 Opened issues

Description

A collection of proof-of-concept source code and scripts for executing remote commands over WinRM using the WSMan.Automation COM object

Services available

!
?

Need anything else?

Contributors list

bohops bohops
# 65,256
bluetea...
dfir
C#
C++
 6 commits

WSMan-WinRM

A collection of proof-of-concept source code and scripts for executing remote commands over WinRM using the WSMan.Automation COM object.

Background

For background information, please refer to the following blog post: WS-Management COM: Another Approach for WinRM Lateral Movement

Notes

  • SharpWSManWinRM.cs and CppWsManWinRM.cpp compile in Visual Studio 2019. Refer to the code comments for required imports/references/etc.
  • All examples leverage the WMI Win32_Process class and WMI Create method for invocation.

Usage

SharpWSManWinRM.cs

 Usage: SharpWSManWinRM.exe  
 Usage: SharpWSManWinRM.exe    


 Example: SharpWSManWinRM.exe host.domain.local notepad.exe
 Example: SharpWSManWinRM.exe host.domain.local "cmd /c notepad.exe" domain\joe.user [email protected]

WSManWinRM.ps1

 Usage: Invoke-WSManWinRM -hostname  -command 
 Usage: Invoke-WSManWinRM -hostname  -command  -user  -password 


 Example: import-module .\WSManWinRM.ps1
          Invoke-WSManWinRM -hostname MyServer.domain.local -command calc.exe
 Example: import-module .\WSManWinRM.ps1
          Invoke-WSManWinRM -hostname MyServer.domain.local -command calc.exe -user domain\joe.user -password [email protected]

WSManWinRM.vbs

 Usage: cscript.exe SharpWSManWinRM.vbs  
 Usage: cscript.exe SharpWSManWinRM.vbs    


 Example: cscript.exe SharpWSManWinRM.vbs host.domain.local notepad.exe
 Example: cscript.exe SharpWSManWinRM.vbs host.domain.local "cmd /c notepad.exe" domain\joe.user [email protected]

WSManWinRM.js

 Usage: cscript.exe SharpWSManWinRM.js  
 Usage: cscript.exe SharpWSManWinRM.js    


 Example: cscript.exe SharpWSManWinRM.js host.domain.local notepad.exe
 Example: cscript.exe SharpWSManWinRM.js host.domain.local "cmd /c notepad.exe" domain\joe.user [email protected]

CppWSManWinRM.cpp

 Usage: CppWSManWinRM.exe  


 Example: CppWSManWinRM.exe host.domain.local notepad.exe


 Note: Username/password option does not work yet

Ethics

WSMan-WinRM is designed to help security professionals perform ethical and legal security assessments and penetration tests. Do not use for nefarious purposes.

We use cookies. If you continue to browse the site, you agree to the use of cookies. For more information on our use of cookies please see our Privacy Policy.