🪟Windows

Command

Description

xfreerdp /v:<target IP address> /u:htb-student /p:<password>

RDP to lab target

Get-WmiObject -Class win32_OperatingSystem

Get information about the operating system

dir c:\ /a

View all files and directories in the c:\ root directory

tree <directory>

Graphically displaying the directory structure of a path

tree c:\ /f | more

Walk through results of the tree command page by page

icacls <directory>

View the permissions set on a directory

icacls c:\users /grant joe:f

Grant a user full permissions to a directory

icacls c:\users /remove joe

Remove a users' permissions on a directory

Get-Service

PowerShell cmdlet to view running services

help <command>

Display the help menu for a specific command

get-alias

List PowerShell aliases

New-Alias -Name "Show-Files" Get-ChildItem

Create a new PowerShell alias

Get-Module | select Name,ExportedCommands | fl

View imported PowerShell modules and their associated commands

Get-ExecutionPolicy -List

View the PowerShell execution policy

Set-ExecutionPolicy Bypass -Scope Process

Set the PowerShell execution policy to bypass for the current session

wmic os list brief

Get information about the operating system with wmic

Invoke-WmiMethod

Call methods of WMI objects

whoami /user

View the current users' SID

reg query <key>

View information about a registry key

Get-MpComputerStatus

Check which Defender protection settings are enabled

sconfig

Load Server Configuration menu in Windows Server Core