#psexec #impacket
Ports: 445/TCP (SMB)
Group: Administrators
Connects to Admin$ Share and uploads a service binary. PSexec uses psexesvc.exe
psexesvc.exe
Connect to the service control manager to create and run a service named PSEXESVC and associate the service binary with C:\Windows\psexesvc.exe.
C:\Windows\psexesvc.exe
Create some named pipes to handle stdin/stdout/stderr.
# Sysinternal's PSExec .\psexec64.exe \\<server> -u <username> -p <password> -i cmd.exe # Impacket's PSexec psexec.py <Username>@<server> cmd.exe
More about psexec herearrow-up-right
Last updated 1 year ago