Use the program to run a remote OS inventory on Windows targets. See the online help of the program for arguments that allow for customization. The program may use credentials passed to it via the command-line or the current session login for authentication against the target hosts.
Remote Inventory for Windows (RemoteWmiInventory.exe) is a command-line oriented tool for generating inventories from remote machines running Windows with WMI or at least SMB and DCOM capability.
RIW uses Windows login, authentication, and impersonation to connect to the target machines in order to perform WMI queries, WMI method invocation, and registry scans. Further it uses SMB for file scans.
The inventory is customizable via a file (called control file). It allows you to perform WMI queries, WMI method invocation, registry, and file system scans.
The command-line arguments are passed to RIW as name-value pairs. Flags are set by their name.
Usage:
RemoteWmiInventory.exe [<argument-name>=<value>|<flag-name>]...
Table of Arguments and Flags
Name |
Type |
Description |
|---|---|---|
batch |
TEXT |
A list of hosts with optional credentials. Format: <host> [<user> <password>]|<whitespace>|#<line-comment> [[<CR>]<LF>...] |
classesFile |
TEXT |
WMI, registry and file queries as XML file. |
conFailureLog |
TEXT |
Enables output of the failure log to the file specified. |
conSuccessLog |
TEXT |
Enables output of the success log to the file specified. |
DeviceID |
TEXT |
RMS / RV network device ID for inventory binding. |
forceW32registryAccess |
FLAG |
Force access to the registry by W32 API instead of WMI. |
help |
FLAG |
Shows a usage hint and lists the command-line options. Ignores all other arguments except pause and quits. |
host |
TEXT |
Host to scan. |
job |
TEXT |
Job tag / ID (this is supposed to be used by Raynet's inventory / discovery agents, only). |
outputpath |
TEXT |
Path for output Excludes: upload |
pass |
TEXT |
Password |
pause |
FLAG |
Pauses before exit and waits for a single key press. |
scanTimeout |
INTEGER |
Defaults to 1200: Timeout in seconds for scanning a single target. Set this this to 0 in order to disable the timeout. |
talkingFileNames |
FLAG |
Use certain bits from the inventory for the inventory file name instead of a generic number. |
testDelay |
INTEGER |
Delay between connection tests (3 connection attempts) in milliseconds. |
testTimeout |
INTEGER |
Connection test timeout in milliseconds, set to 0 to disable the connection test. |
upload |
TEXT |
Address for upload Excludes: outputpath. |
user |
TEXT |
Username |
verbose |
FLAG |
Log the remote commands. |
workers |
INTEGER |
Defaults to 10: Maximum worker threads running in parallel. |
Privileges
The user that operates RIW needs privileges to run WMI queries. Some queries and require elevated privileges as a member of the local or domain administrator group has got. Also, file scans require such permissions to access the administrative shares which allow access to the file systems of the target machines.
|
Tip: In case of Windows XP, the remote Win32 API calls are the only option to get inventory relevant information from the target machines registry. |
Ports in Use
•135 for running WMI queries or using Win32 API calls as an alternative method for gathering inventory relevant data from the registry.
•445 for running software inventory relevant file scans
•80(443) for HTTP(S) upload to the data sink or 445 for SMB upload to the data sink