/Powerview-Common-Commands

PowerView

Original Publish - https://aksheet10.medium.com/powerview-common-commands-60f9a9ad6a80

https://github.com/PowerShellEmpire/PowerTools/blob/master/PowerView/powerview.ps1

Save this in a notepad as PowerView.ps1

Open Command Promt as administrator

powershell -ep bypass

. .\PowerView.ps1

Get-NetDomain or Get-Domain - Information about the domain

image

Pasted image 20210529193905

Get-NetDomainControllers - Get all the domains

Pasted image 20210529194115

Get-DomainPolicy

Pasted image 20210529194318

Get-NetUser / Get-DomainUser - Both are similar

image

Pasted image 20210529194934

Get-DomainUser -Properties cn,description is same as Get-NetUser | select cn, description

Pasted image 20210529200230

Get-NetUser "name" is same as Get-DomainUser "name"

image

Pasted image 20210529213314

Get-NetGroupMember "Domain Admins"

Pasted image 20210529215827

Get-NetGroup or Get-DomainGroup - Get all the groups Get-NetGroup "Domain Admins" or Get-DomainGroup "Domain Admins" - Gets specific group image

image

Get-DomainComputer | select cn, dnshostname also same as Get-NetComputer | select cn, dnshostname

image

Pasted image 20210529220504

Invoke-ShareFinder - Shows all the shares

Pasted image 20210529221344

Get-NetComputer -Properties samaccountname same as Get-DomainComputer -Properties samaccountname

image

Get-NetGPO -Properties displayname,whenchanged same as Get-DomainGPO -Properties displayname, whenchanged

image\

image