search

Lateral Movement

T1028: WinRM for Lateral Movementchevron-rightWinRS for Lateral Movementchevron-rightT1047: WMI for Lateral Movementchevron-rightT1076: RDP Hijacking for Lateral Movement with tsconchevron-rightT1051: Shared Webrootchevron-rightT1175: Lateral Movement via DCOMchevron-rightWMI + MSI Lateral Movementchevron-rightLateral Movement via Service Configuration Managerchevron-rightLateral Movement via SMB Relayingchevron-rightWMI + NewScheduledTaskAction Lateral Movementchevron-rightWMI + PowerShell Desired State Configuration Lateral Movementchevron-rightSimple TCP Relaying with NetCatchevron-rightEmpire Shells with NetNLTMv2 Relayingchevron-rightLateral Movement with Psexecchevron-rightFrom Beacon to Interactive RDP Sessionchevron-rightSSH Tunnelling / Port Forwardingchevron-rightLateral Movement via WMI Event Subscriptionchevron-rightLateral Movement via DLL Hijackingchevron-rightLateral Movement over headless RDP with SharpRDPchevron-rightShadowMove: Lateral Movement by Duplicating Existing Socketschevron-right
PreviousCredentials Collection via CredUIPromptForCredentialsNextT1028: WinRM for Lateral Movement

Last updated