systeminfo
whoami
: get current userwhoami /priv
: get current user privilegeswmic qfe get Caption,HotFixID,InstalledOn,Description
: get installed updatesnet localgroup <user>
: get group membership of usernet user <user>
: get user info
ipconfig /all
netstat -ano
: lists info on tcp/udp portsnetsh advfirewall show allprofiles
: shows f/w statusarp -a
: display arp tableroute print
: print route table
net start
: lists services runningnet stop <servicename>
: stop a servicewmic service list brief
: same as above with extra details like pidtasklist /svc
: list process with respecive svcschtasks /query /fo list /v
: list scheduled tasks
sysinfo
getuid
getprivs
show_mount
ipconfig
- post/windows/gather/win_privs
- post/windows/gather/enum_logged_on_users
- post/windows/gather/checkvm
- post/windows/gather/enum_applications
- post/windows/gather/enum_computers : enum computers on lan
- post/windows/gather/enum_patches
- post/windows/gather/enum_shares
- post/windows/gather/enum_av_excluded : excluded av path
- JAWS - https://github.com/411Hall/JAWS
powershell.exe -ExecutionPolicy Bypass -File .\jaws-enum.ps1 -OutputFilename JAWS-Enum.txt