Windows Remote Management (WinRM) is a protocol for managing Windows machines remotely using HTTP and HTTPS. This post covers the setup and configuration of WinRM on Windows Server 2019 and Windows 10, testing connections, lateral movement, remote shell access, and security implications. Steps include setting execution policies, enabling PSRemoting, configuring ports, and using tools like nxc, Metasploit, and Docker for various tasks. Proper configuration is crucial to prevent unauthorized access.
Table of contents
Table of ContentsLab SetupTesting the connectionLateral Movement (Locally)Lateral Movement (Remotely)Connecting remote shell using dockerConclusionSort: