SensePost

The S is for Security. How to use WinRMS as a solid NTLM relay target, and why it’s less secure than WinRM over HTTP.

writeup: https://sensepost.com/blog/2025/is-tls-more-secure-the-winrms-case./

PR to impacket:
https://github.com/fortra/impacket/pull/1947/files

SensePost | Is tls more secure? the winrms case.

Leaders in Information Security

Apr 14, 2025 at 4:37pmWeb
Show threadSensePostApr 17, 2025
After identifying a mistake relating to NTLMv1 being enabled in the test environment, the blog has been updated with an errata section.