From securityonline.info
WMEye is an experimental tool that was developed when exploring Windows WMI. The tool is developed for performing Lateral Movement using WMI and remote MSBuild Execution. It uploads the encoded/encrypted shellcode into remote targets WMI Class Property, create an event filter that when triggered writes an MSBuild-based Payload using a special WMI Class called LogFileEventConsumer, and finally executes the payload remotely.