x/handbook
1
0
Fork 0
Code Issues Pull requests Actions Packages Projects Releases Wiki Activity
handbook/tools/5.Machine/2.Windows/General/Exploitation/Commands.md
Anton Nesterov af9011411c
vault backup: 2024-08-31 01:07:21
2024-08-31 01:07:22 +02:00

99 lines
3.1 KiB
Markdown
Raw Permalink Blame History

This file contains invisible Unicode characters

This file contains invisible Unicode characters that are indistinguishable to humans but may be processed differently by a computer. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

## Commands (Powershell)
Check Machine General Information
```
- systeminfo ---> Operating system, version, Hostname, hardware, ...
- systeminfo | findstr Domain ---> Check if machine is Domain Joinned (AD)
```
- General
```Terminal
- cd
- dir ---> List directory (like ls)
- type ---> Display text of element (like cat)
- more ---> Display text of element (like cat)
- | clip ---> Copy the result of the command (clipboard)
- | Findstr X ---> Example tasklist | findstr firefox ---> (like grep linux)
- && ---> Combine Tasks
- cls ---> Clear terminal
```
- File Permision
```Terminal
- icacls ---> Find permision of a file
- cd qc ---> Find information application, user, binary path, ...
- assoc ---> List what program open what format (ex: MP4 = VLC)
- assoc .FILE-FORMAT=PROGRAM ---> Change the default program open format
```
- User
```Terminal
- whoami ---> Check who you are
- net users ---> Check all local users
- net groups ---> Check all local groups
```
- Network
```Terminal
- ipconfig ---> Check ip information
- ipconfig /all ---> Check ip information ++ (MAC Address, DNS, ...)
- ipcongif /release ---> Remove old ip address (use renew after)
- ipconfig /renew ---> Add new ip address
- ipconfig /flushdns ---> Refresh cache for the DNS
- nslookup DOMAIN ---> Check DNS record (MX, CNAME, ...)
- getmac /v ---> Display MAC Address
- tracert (traceroute) ---> Traceroute Network
- ping
- netstat ---> Show open ports on the machine
- netstat -af ---> Show open ports on the machine (Bluetooth)
```
- Others
```
- ls env: ---> List all then system variable
- get-help SOFTWARE ---> Get help message (Like -help in linux)
- taskkill /PID ID /F ---> Kill PID process
```
## Windows GUID Commands
```Terminal
run ---> lusrmgr.msc (check user, groupes, permissions ...)
**Folder Explorer**
- %windir% ---> Will locate you directly to the windows folder
**Usefull Programes
- System Controle (Services, Tools, ...)
- System Information
- Computer managment (System Tools, Storage, and Services and Applications.)
- Task Scheduler (Create Task)
- Event Viewer (Check events that have occurred on the computer)
- Ressource Monitor
```
## Exploit Commands
```
- whoami /priv ---> Check the privilege of the user
- /SVC ---> List all executable running
- systemeinfo (Hotfix's) ---> Kernel Verion Path (Find id to exploit old kernel)
- net users
- net groups
- assoc ---> List what program open what format (ex: MP4 = VLC)
- assoc .FILE-FORMAT=PROGRAM ---> Change the default program open format
- netsh advfirewall set allprofiles state off ---> Turn off firewall
- netstat -af ---> Show open ports on the machine
```
Reference in a new issue View git blame Copy permalink