SessionExec
The SessionExec module is based on Leo4j's SessionExec, it uses a PowerShell port of the code Invoke-SessionExec.
This module will connect to the target system elevate to SYSETM and run a specified -command
as each user on the system that exhibits a logon session.
For example, assuming the below output. We can see the remote host currently has the users standarduser and srv2019-admin within existing logon sessions. PsMapExec will execute a given command within each user context.
Output for SessionExec is stored $PWD\PME\SCCM\
.
Supported Methods
SMB
SessionHunter (WMI)
WMI
WinRM
Optional Parameters
Parameter | Value | Description |
---|---|---|
-Command | Command | The command to run as each user, if not specified a simple "whoami" will be executed. |
-ShowOutput | N/A | Displays each targets output to the console |
-SuccessOnly | N/A | Display only successful results |
Usage
Last updated