Note
It typically runs on ports
5985(over HTTP) and5986(over HTTPS).
Nmap scan
nmap -sV -sC 10.129.201.248 -p5985,5986 --disable-arp-ping -n| Command | Description |
|---|---|
evil-winrm -i 10.129.201.248 -u USERNAME -p PASSWORD | Interact with WinRM. |
You should check Footprinting Theory ๐ to get further knowledge.