evil-winrm
evil-winrm
is used to take advantage of machines with port 5985 or 5986 open which is Powershell Remoting.This will provide shell level access to the machine with the user account that you have compromised.
You can auth either with a hash or password
Supports SSL
Usage
Connect with pass the hash attack
Password Authentication:
Last updated