Small collection of powershell scripts useful during lateral movement
Look for keywords in files and package them for exfil. The "LocationIsServer" allows you to specify a file share (e.g. \myserver) and it will pillage all shares
FindInterestingFiles 'C:\secrets' -packfiles $true -compress $true -outputfile here.bin
(decompress with gunzip)
Ask Something of Active Directory (thin LDAP wrapper)
(AdQuery -ldapflter $ldapfilter).FindAll() | % {$_.Properties | Convert-LDAPProperty }
Look for computers logged on to AD with their computer account in last 8 hours
FindVeryActiveComputers -osversion "*"
Fetch one object matching a filter
OneObject -ldapfilter "(name=truekonrads)"