I have the IP addresses of some computers on my network. Is there any command line tool like PsExec, which can take the IP Address as input and find out the username of the currently logged in user? I can install stuff on my workstation, but not the others. I can also run Metasploit / NMap / any other such program on my workstation.
Asked
Active
Viewed 1.8e+01k times
4 Answers
11
Try this:
wmic.exe /node:"IP-or-HostName" ComputerSystem Get UserName
Example:
wmic.exe /node:"172.28.1.100" ComputerSystem Get UserName
Output:
UserName
DOMAIN\User
(Yes, /node value must be quoted)
George Chakhidze
- 211
6
For Windows boxes get psLoggedOn. It tells you who is currently signed into the box via console/rdp and who is connected via network shares.
If you don't want to install an app, there is also the commands qwinsta and query session that you can run from the command line like this:
qwinsta /server:name_of_host or query session /server:name_of_host
I say Reinstate Monica
- 26,651
MikeJ
- 746
0
You can do this with the following commands. This works because any logged in user would run explorer.exe automatically after signing in:
for /f "TOKENS=1,2,*" %%a in ('tasklist /s %PCNAME% /FI "IMAGENAME eq explorer.exe" /FO LIST /V') do if /i "%%a %%b"=="User Name:" (set domain_user=%%c)
for /f "TOKENS=1,2 DELIMS=\" %%a in ("%domain_user%") do set domain=%%a && set user=%%b
I say Reinstate Monica
- 26,651
Minor
- 1