Enumeration

Also, see Bloodhound page

Active Directory Mind Map From Orange CyberDefense

Powershell

List all domain users

Get-ADUser -Filter *

List all users within the THM OU for the thmredteam.com domain

Get-ADUser -Filter * -SearchBase "OU=THM,DC=thmredteam,DC=com"

Powerview.ps1

Import the Module

. .\PowerView.ps1

# Get information on a domain
Get-NetDomain

# Enumerate domain controller 
Get-NetDomainController

# Get a specific user identified by username
Get-NetUser -UserName peter

# Get specifics properties
Get-NetUser -properties name, description

# Check for Domain Admins groups
Get-NetGroup 'Domain Admins'

PreviousPass the Hash (PtH)NextASREP-R Roasting

Last updated 1 year ago