PSRemoting

lateral_movement/invoke_psremoting

One often forgotten method of lateral movement is PSRemoting. If PSRemoting is enabled or you have credentials with privileges to enable it, you can utilize it to move throughout a network. This module requires a listener, agent, credentials that are allowed to utilize PSRemoting and a target computer:

empire_psremoting_setup

Once you run the module, Empire will launch an agent on the remote system by utilizing PSRemoting:

empire_psremoting_execute