Lateral Movement with WMIOps

WMIOps is a PowerShell script that penetration testers and ethical hackers can use to execute commands, gather information, and run other PowerShell scripts on remote Windows machines. In this course, you will learn lateral movement using WMIOps.
Course info
Level
Intermediate
Updated
Sep 25, 2020
Duration
24m
Table of contents
Description
Course info
Level
Intermediate
Updated
Sep 25, 2020
Duration
24m
Your 10-day individual free trial includes:

Expert-led courses

Keep up with the pace of change with thousands of expert-led, in-depth courses.
Description

Do you need a tool that can run commands on remote Windows hosts from an exploited machine? In this course, Lateral Movement with WMIOps, you’ll cover how to utilize WMIOps to complete lateral movement in a red team environment.

First, you’ll demonstrate executing commands on remote hosts.
Next, you’ll apply these skills to gather information from Windows servers.
Finally, you’ll simulate lateral movement by opening remote PowerShell sessions on Windows devices.

When you’re finished with this course, you’ll have the skills and knowledge to execute these techniques T1047: Windows Management Instrumentation and T1077: Windows Admin Shares using WMIOps.

About the author
About the author

Matt Glass is an IT Project Manager in Stuttgart, Germany, working as a government contractor. He has more than 12 years of IT experience in a variety of roles.

More from the author
Execution with Donut
Intermediate
19m
Nov 15, 2021
Impact with Low Orbit Ion Cannon (LOIC)
Intermediate
23m
Sep 30, 2021
Manage Suricata Rule Sets and Rule Sources
Intermediate
1h 6m
Apr 27, 2021
More courses by Matt Glass
Section Introduction Transcripts
Section Introduction Transcripts

Course Overview
Welcome to Pluralsight and this Red Team Tools course featuring WMIOps, the open‑source lateral movement tool developed and maintained by Chris Truncer. WMIOps is a tool that penetration testers and ethical hackers can use to execute commands, gather information, and run PowerShell scripts on remote Windows machines. WMIOps is used for lateral movement within a network using credentials you already obtained on a host you already exploited. WMIOps is a PowerShell script containing a variety of functions that leverage Windows Management Instrumentation, or WMI, to remotely manage Windows machines. The functions in WMIOps enable you to execute commands, run scripts, download files, and schedule tasks remotely. Come join me as we use WMIOps for lateral movement from an exploited host, and gain access to remote workstations and servers.