99 lines
3.1 KiB
Markdown
99 lines
3.1 KiB
Markdown
|
|
|||
|
## Commands (Powershell)
|
|||
|
Check Machine General Information
|
|||
|
```
|
|||
|
- systeminfo ---> Operating system, version, Hostname, hardware, ...
|
|||
|
- systeminfo | findstr Domain ---> Check if machine is Domain Joinned (AD)
|
|||
|
```
|
|||
|
|
|||
|
- General
|
|||
|
```Terminal
|
|||
|
- cd
|
|||
|
- dir ---> List directory (like ls)
|
|||
|
- type ---> Display text of element (like cat)
|
|||
|
- more ---> Display text of element (like cat)
|
|||
|
- | clip ---> Copy the result of the command (clipboard)
|
|||
|
- | Findstr X ---> Example tasklist | findstr firefox ---> (like grep linux)
|
|||
|
- && ---> Combine Tasks
|
|||
|
- cls ---> Clear terminal
|
|||
|
```
|
|||
|
|
|||
|
- File Permision
|
|||
|
```Terminal
|
|||
|
- icacls ---> Find permision of a file
|
|||
|
- cd qc ---> Find information application, user, binary path, ...
|
|||
|
|
|||
|
- assoc ---> List what program open what format (ex: MP4 = VLC)
|
|||
|
- assoc .FILE-FORMAT=PROGRAM ---> Change the default program open format
|
|||
|
```
|
|||
|
|
|||
|
- User
|
|||
|
```Terminal
|
|||
|
- whoami ---> Check who you are
|
|||
|
|
|||
|
- net users ---> Check all local users
|
|||
|
- net groups ---> Check all local groups
|
|||
|
```
|
|||
|
|
|||
|
- Network
|
|||
|
```Terminal
|
|||
|
- ipconfig ---> Check ip information
|
|||
|
- ipconfig /all ---> Check ip information ++ (MAC Address, DNS, ...)
|
|||
|
- ipcongif /release ---> Remove old ip address (use renew after)
|
|||
|
- ipconfig /renew ---> Add new ip address
|
|||
|
- ipconfig /flushdns ---> Refresh cache for the DNS
|
|||
|
|
|||
|
- nslookup DOMAIN ---> Check DNS record (MX, CNAME, ...)
|
|||
|
|
|||
|
- getmac /v ---> Display MAC Address
|
|||
|
|
|||
|
- tracert (traceroute) ---> Traceroute Network
|
|||
|
- ping
|
|||
|
|
|||
|
- netstat ---> Show open ports on the machine
|
|||
|
- netstat -af ---> Show open ports on the machine (Bluetooth)
|
|||
|
```
|
|||
|
|
|||
|
- Others
|
|||
|
```
|
|||
|
- ls env: ---> List all then system variable
|
|||
|
- get-help SOFTWARE ---> Get help message (Like -help in linux)
|
|||
|
- taskkill /PID ID /F ---> Kill PID process
|
|||
|
```
|
|||
|
|
|||
|
|
|||
|
## Windows GUID Commands
|
|||
|
|
|||
|
```Terminal
|
|||
|
run ---> lusrmgr.msc (check user, groupes, permissions ...)
|
|||
|
|
|||
|
**Folder Explorer**
|
|||
|
- %windir% ---> Will locate you directly to the windows folder
|
|||
|
|
|||
|
**Usefull Programes
|
|||
|
- System Controle (Services, Tools, ...)
|
|||
|
- System Information
|
|||
|
- Computer managment (System Tools, Storage, and Services and Applications.)
|
|||
|
- Task Scheduler (Create Task)
|
|||
|
- Event Viewer (Check events that have occurred on the computer)
|
|||
|
- Ressource Monitor
|
|||
|
```
|
|||
|
|
|||
|
|
|||
|
## Exploit Commands
|
|||
|
|
|||
|
```
|
|||
|
- whoami /priv ---> Check the privilege of the user
|
|||
|
- /SVC ---> List all executable running
|
|||
|
- systemeinfo (Hotfix's) ---> Kernel Verion Path (Find id to exploit old kernel)
|
|||
|
|
|||
|
- net users
|
|||
|
- net groups
|
|||
|
|
|||
|
- assoc ---> List what program open what format (ex: MP4 = VLC)
|
|||
|
- assoc .FILE-FORMAT=PROGRAM ---> Change the default program open format
|
|||
|
|
|||
|
- netsh advfirewall set allprofiles state off ---> Turn off firewall
|
|||
|
|
|||
|
- netstat -af ---> Show open ports on the machine
|
|||
|
```
|