REMOTE-DESK\Replicator REMOTE-DESK Replicator S-1–5–32–552 REMOTE-DESK\Remote Desktop Users REMOTE-DESK Remote Desktop Users S-1–5–32–555 REMOTE-DESK\Power Users REMOTE-DESK Power Users S-1–5–32–547
REMOTE-DESK\Network Configuration Operators REMOTE-DESK Network Configuration Operators S-1–5–32–556 REMOTE-DESK\Guests REMOTE-DESK Guests S-1–5–32–546 REMOTE-DESK\Backup Operators REMOTE-DESK Backup Operators S-1–5–32–551 REMOTE-DESK\Administrators REMOTE-DESK Administrators S-1–5–32–544 Wmic /user:"FOREIGN_DOMAIN\Admin" /password:"Password" /node:192.168.33.25 group list brief The same command issued against a remote system in another domain looks like this: You can also perform the same data collection over the network without ever logging into the remote machine provided you know have some administrative credentials that the remote system will accept. Lab7\Replicator Lab7 Replicator S-1–5–32–552 Lab7\Remote Desktop Users Lab7 Remote Desktop Users S-1–5–32–555 Lab7\Power Users Lab7 Power Users S-1–5–32–547 Lab7\Network Configuration Operators Lab7 Network Configuration Operators S-1–5–32–556 Lab7\Backup Operators Lab7 Backup Operators S-1–5–32–551 Lab7\Administrators Lab7 Administrators S-1–5–32–544 Which will return output similar to this: Most WMIC commands are issued in the following format:įor example, you can collect a list of groups on the local system using the following command: The first time you run WMIC you’ll see a message that WMIC is beinginstalled, but no media is required for installation, nor will anything appear in the Add/Remove Programs list. Although WMIC is not included on Windows 2000, you can still usea Windows XP or Server 2003 client to remotely query Windows 2000 systems and receive similar results.
WMIC is included in the default installation of Windows XP (excluding Home edition) and Windows Server 2003. The pre-defined queries mean that you won’t necessarily need to spend any time learning the WMI Query Language (WQL), which is syntactically similar to SQL. The WMIC command-line tool is basically another front-end to access the WMI framework, with the added bonus that numerous queries are pre-defined. If you’ve done any scripting for the Windows platform, you’ve probably bumped into the Windows Management Instrumentation (WMI) scripting API, which can be used to enumerate all kinds of information. So I decided to write an article dedicated to this tool. The previous article has raised interest in readers regarding WMIC. This command-line tool is really useful for both penetration testing and forensics tasks
0 kommentar(er)
