💕Altered Security
Course Content
Port Scanning
- List of Tools
- Hands-on 1
4️⃣Meta sploit
- Page 10
- Hands-On 2
5️⃣Domain Enumeration
- AD Module and PowerView
- Hand-On 3
6️⃣Lateral-Movement - Extracting Credential
- 🔥Credentials
- Hans-On 4
7️⃣Lateral-Movement - Credential Spraying
- Spraying Attack
- Hands-On 5
8️⃣Lateral-Movement - PS Remoting
- Live of the Land
- Hands-On 6
Application Whitelisting
- AWL Bypass
- Hand-On 7
Abusing-SQL Servers
- Page 4
ACL Attacks
- Page 5
Domain Privilege Escalation
- Page 6
Domain Dominance
- Page 7
Detection And Defense
- Page 8
Data

Powered by GitBook

On this page

Was this helpful?

Lateral-Movement - PS Remoting

Live of the Land

PowerShell Remoting is enabled by-default on all Windows server OS after Server 2012.

It uses TCP Port 5985 and 5986 (SSL).

Cmdlets

New-PSSession

Enter-PSSession

Invoke-Command

PreviousHands-On 5 NextHands-On 6

Last updated 1 year ago

Was this helpful?

8️⃣