psexec \\computer -u Administrator cmd

The above command launches an interactive command prompt on \\computer running as Administrator. Mark Russinovich and Bryce Cogswell over at Sysinternals never fail to amaze me. If you haven't already, go grab Pstools now!

Jason Posted @ 10/8/2003 2:18 PM
Wow...that's pretty wild..It's actually a local window executing a remote command prompt (or whatever). Very cool stuff!

I didn't describe what it does very well - but yes, it is pretty wild!  It will even copy the command you want to run onto the remote machine if nessesary (it doesn't have to be cmd).  All without using telnet.  Bonkers!

Published Wednesday, October 08, 2003 12:32 PM by Jamie Cansdale
Filed under:

Comments

# re: psexec \\computer -u Administrator cmd

Wow...that's pretty wild..It's actually a local window executing a remote command prompt (or whatever). Very cool stuff!

Wednesday, October 08, 2003 9:18 AM by Jason

# re: psexec \\computer -u Administrator cmd

dgf

Tuesday, February 10, 2004 2:45 PM by cvb

# re: psexec \\computer -u Administrator cmd

It has lot more to offer!!! Just research it more folks.

Tuesday, April 27, 2004 3:19 AM by king_black_cobra

# re: psexec \\computer -u Administrator cmd

Note that psexec sends passwords over the wire in plaintext. And that the user on the remote machine must be able to install a service.
To spawn a process on a remote machine without using remote desktop, WMI is a more secure way to go.

Saturday, May 01, 2004 3:44 PM by anon

# re: psexec \\computer -u Administrator cmd

gd

Tuesday, July 20, 2004 12:39 AM by simahmud

Leave a Comment

(required) 
(required) 
(optional)
(required)