search

Powershell Session File Transfer

hashtag
⚑ PowerShell Remoting File Transfers – When HTTP/SMB Aren’t Available

Need to move files but HTTP, HTTPS, or SMB are blocked? 😱 No worries β€” PowerShell Remoting (WinRM) has your back! πŸ›‘οΈ

With PowerShell sessions, you can send and receive files from remote systems using built-in cmdlets like Copy-Item. πŸ§³πŸ“

hashtag
🧠 What is PowerShell Remoting?

PowerShell Remoting allows you to:

  • Run commands/scripts on remote systems

  • Transfer files between your machine and the remote

  • Use sessions for persistent connections

It works over:

  • πŸ“‘ HTTP (port 5985)

  • πŸ” HTTPS (port 5986)

By default, enabling PowerShell Remoting creates listeners on both!

hashtag
Step 1: Confirm Who You Are & Where You Are

PS C:\htb> whoami
htb\administrator

PS C:\htb> hostname
DC01

You're logged in as Administrator on DC01 βœ…

hashtag
Step 2: Confirm Remote Host is Reachable (WinRM Port 5985)

πŸ“Œ Output:

βœ… We can connect β€” WinRM is open and listening!

hashtag
Step 3: Create a Remote PowerShell Session

πŸ“Œ If you're already Administrator on the remote machine, no credentials needed!

hashtag
Step 4: Transfer File FROM Local ➑️ Remote

πŸ“ This copies samplefile.txt from DC01 to DATABASE01.

hashtag
Step 5: Transfer File FROM Remote ➑️ Local

πŸ“ This pulls DATABASE.txt from DATABASE01 and saves it to C:\ on DC01.

hashtag
Optional Cleanup: Close the Session

πŸ’‘ Always good practice to close what you open. πŸ”

PreviousTransfer Files with Netcat, Ncat, RDPNextRDP File Transfer

Last updated