Sodamhan.com

TL;DR

nxc wmi

Pentest and exploit the Windows Management Instrumentation (WMI). More information: https://www.netexec.wiki/wmi-protocol.

  • Search for valid credentials by trying out every combination in the specified lists of usernames and passwords:

nxc wmi 192.168.178.2 -u path/to/usernames.txt -p path/to/passwords.txt

  • Authenticate via local authentication (as opposed to authenticating to the domain):

nxc wmi 192.168.178.2 -u username -p password --local-auth

  • Issue the specified WMI query:

nxc wmi 192.168.178.2 -u username -p password --wmi wmi_query

  • Execute the specified command on the targeted host:

nxc wmi 192.168.178.2 -u username -p password --x command

This document was created using the contents of the tldr project.