PowerShell Commands for Pentesters.

Posted on By Treadstone 71

Awesome PowerShell.

• A wide collection of different materials for learning PowerShell: books, courses, articles, tips, commands, etc.:

API Wrapper;
Blogs;
Books;
Build Tools;
Code and Package Repositories;
Commandline Productivity;
Communities;
Data;
Documentation Helper;
Editors and IDEs;
Frameworks;
Interactive Learning;
Logging;
Module Development Templates;
Package Managers;
Parallel Processing;
Podcasts;
Security;
SharePoint;
SQL Server;
Testing;
Themes;
UI;
Videos;
Web server;
Misc.

• In the continuation of the previous article, I will share with you some useful commands that will be useful for hackers and information security professionals:

+ Locating files with sensitive information:
Find potentially interesting files;
Find credentials in Sysprep or Unattend files;
Find configuration files containing “password” string;
Find database credentials in configuration files;
Locate web server configuration files;
+ Extracting credentials:
Get stored passwords from Windows PasswordVault;
Get stored passwords from Windows Credential Manager;
Dump passwords from Google Chrome browser;
Get stored Wi-Fi passwords from Wireless Profiles;
Search for SNMP community string in registry;
Search for string pattern in registry;
+ Privilege escalation:
Search registry for auto-logon credentials;
Check if AlwaysInstallElevated is enabled;
Find unquoted service paths;
Check for LSASS WDigest caching;
Credentials in SYSVOL and Group Policy Preferences (GPP);
+ Network related commands:
Set MAC address from command-line;
Allow Remote Desktop connections;
Host discovery using mass DNS reverse lookup;
Port scan a host for interesting ports;
Port scan a network for a single port (port-sweep);
Create a guest SMB shared drive;
Whitelist an IP address in Windows firewall;
+ Other useful commands:
File-less download and execute;
Get SID of the current user;
Check if we are running with elevated (admin) privileges;
Disable PowerShell command logging;
List installed antivirus (AV) products.

ALL Tags:

Related Posts

Copyright 2024

Discover more from The Cyber Shafarat -

Subscribe now to keep reading and get access to the full archive.

Continue reading