type
status
date
slug
summary
tags
category
icon
password
Status
Due date
Sep 18, 2023 03:40 AM

RSAT

Remote Server Administration Tool。安裝完成之後不需重開機,Active Directory Module 裡的 Cmdlet 在被使用時會自動被 PowerShell 載入

adsisearcher

Typing [adsiSearcher] in the Windows PowerShell console, and pressing enter tells you the type accelerator is recognized, and that it will work, but it does not create an instance of the class – i.e., there is no constructor. Piping the type accelerator to the format-list cmdlet and asking for all the properties to be returned, supplies lots of cool information about the class, but does not return the information we saw when we used the new-object cmdlet to create the DirectorySearcher class. The details returned via the format-list cmdlet are seen here.

Test-ADUser

Get-ForestDomains

【Full script】Remove user from specific AD group

💡
上述script尚未完整,還需判斷AD ROLE及確認執行的權限

Reference

  • ADSI
Use the PowerShell [adsiSearcher] Type Accelerator to Search Active Directory - Scripting Blog
  Summary: Learn how to use the Windows PowerShell [adsiSearcher] type accelerator to search Active Directory Domain Services (AD DS). Hey, Scripting Guy! I am trying to get in touch with my inner programmer. The problem is that our company has cut head count in the past two years,
Use the PowerShell [adsiSearcher] Type Accelerator to Search Active Directory - Scripting Blog
https://devblogs.microsoft.com/scripting/use-the-powershell-adsisearcher-type-accelerator-to-search-active-directory/
Use the PowerShell [adsiSearcher] Type Accelerator to Search Active Directory - Scripting Blog
How to check if an AD user exists
I am working on error checking in my "Copy AD User" powershell script. I use forms to ask for specific information, and the purpose of this question is to make sure i'm putting in error checking
How to check if an AD user exists
https://stackoverflow.com/questions/48813700/how-to-check-if-an-ad-user-exists
How to check if an AD user exists
Easy Domain Enumeration with ADSI
Introduction[adsisearcher]::new([adsi]”LDAP://domain.local/OU=MyOU,DC=Domain,DC=Local”, “(ObjectCategory=user)”).FindAll()[adsisearcher]::new([adsi]”LDAP://domain.local”, “(name=targetuser)”).FindOne().GetDirectoryEntry()[adsisearcher]::new([adsi]”LDAP://domain.local”, “(ObjectCategory=user)”).FindAll()|ForEach-Object {$entry=$_.GetDirectoryEntry();$entry.Properties[“description”].Value=”Nothing interesting here.”; $entry.CommitChanges()}[adsisearcher]::new([adsi]”LDAP://domain.local”, “(name=targetuser)”).FindOne().GetDirectoryEntry().InvokeGet(“servicePrincipalName”)[adsisearcher]::new([adsi]”LDAP://domain.local”, “(name=targetuser)”).FindOne().GetDirectoryEntry().Properties[“servicePrincipalName”][adsisearcher]::new([adsi]”LDAP://domain.local”, “(name=targetuser)”).FindOne().GetDirectoryEntry().Invoke(“setPassword”, “newpassword”)
https://dev-2null.github.io/Easy-Domain-Enumeration-with-ADSI/
piping ADSI output into another powershell script for finding domain computers
I have moved to a company that has legacy servers and no RSAT so I cannot use AD module and have to make sure the script is v2 compliant. I have written a discovery script to find all the domains ...
piping ADSI output into another powershell script for finding domain computers
https://stackoverflow.com/questions/60201666/piping-adsi-output-into-another-powershell-script-for-finding-domain-computers
piping ADSI output into another powershell script for finding domain computers
奇安信攻防社区-域渗透——Adsisearcher和ADSI初探
奇安信攻防社区-域渗透——Adsisearcher和ADSI初探
https://forum.butian.net/share/597
  • Enums
Working With Enums In PowerShell
Enums are not the commonly used data type in PowerShell but I was recently reminded of how simple and useful they really are. And they got some love in PowerShell 5!
Working With Enums In PowerShell
https://blog.pauby.com/post/working-with-enums-in-powershell/
Working With Enums In PowerShell
Quick tip: Enum with string values
Using enums can come in handy in many situations. When writing an advanced function in PowerShell, using an enum as the parameter type will ensure that only valid values are used, as well as give y…
Quick tip: Enum with string values
https://communary.net/2014/11/20/quick-tip-enum-with-string-values/
Quick tip: Enum with string values
Get-Mockaroo
UPDATE: The function now also supports creating dynamic data sets! Have you ever been in a situation where you wish you had some random data lying around while testing some code or whatnot? I do al…
Get-Mockaroo
https://communary.net/2014/10/29/get-mockaroo/
Get-Mockaroo
  • Pipelined input into function
Incorporating Pipelined Input into PowerShell Functions - Scripting Blog
Summary: Microsoft MVP, Adam Bertram, talks about accepting pipelined input into Windows PowerShell advanced functions. Microsoft Scripting Guy, Ed Wilson, is here. Today Microsoft MVP, Adam Bertram, returns to talk about accepting pipeline input into advanced Windows PowerShell functions. Note   This is the second post in a series.
Incorporating Pipelined Input into PowerShell Functions - Scripting Blog
https://devblogs.microsoft.com/scripting/incorporating-pipelined-input-into-powershell-functions/
Incorporating Pipelined Input into PowerShell Functions - Scripting Blog
  • LDAP Filter
搜尋篩選語法 - Win32 apps
搜尋篩選可讓您定義搜尋準則,並提供更有效率且有效的搜尋。
搜尋篩選語法 - Win32 apps
https://learn.microsoft.com/zh-tw/windows/win32/adsi/search-filter-syntax
搜尋篩選語法 - Win32 apps
  • without ADSI
Get-AdUser in Multi Domain Forest - ShellGeek
To get-aduser in multi domain forest or different domain, use Get-Domain, Get-AdUser, Get-AdDomainController
Get-AdUser in Multi Domain Forest - ShellGeek
https://shellgeek.com/get-aduser-in-multi-domain-forest/
  • RSAT
在Windows 10 v1809之後安裝RSAT工具的改變
在 Windows 10 1809 之後安裝 RSAT 工具的改變 在 安裝 PowerShell - Active Directory Module 解決 AD 大小事 裡有介紹 Windows 10 如何安裝 RSAT 工具,以取得 Windows 10 的 Pow...
在Windows 10 v1809之後安裝RSAT工具的改變
https://blog.kkbruce.net/2020/01/windows-10-v1809rsat.html
在Windows 10 v1809之後安裝RSAT工具的改變
安裝PowerShell - Active Directory Module解決AD大小事
安裝 PowerShell - Active Directory Module 解決 AD 大小事 在企業內,經常需要查詢 Active Directory(AD) 資訊,有幾種方式(方向)可以來執行。 使用 AD 工具 撰寫 C# 程式 PowerShell - ...
安裝PowerShell - Active Directory Module解決AD大小事
https://blog.kkbruce.net/2019/02/setup-powershell-active-directory-module.html
  • Accelerators
about Type Accelerators - PowerShell
Describes the Type accelerators available for .NET framework classes
about Type Accelerators - PowerShell
https://learn.microsoft.com/en-us/powershell/module/microsoft.powershell.core/about/about_type_accelerators?view=powershell-7.3&viewFallbackFrom=powershell-7.1
about Type Accelerators - PowerShell
  • DC Role
Understanding Global Catalog (Active Directory) – TheITBros
In addition to the 5 FSMO roles in Active Directory, there is the sixth (unofficial) domain controller role — Global catalog (GC)
Understanding Global Catalog (Active Directory) – TheITBros
https://theitbros.com/global-catalog-active-directory/
Understanding Global Catalog (Active Directory) – TheITBros
Active Directory FSMO Roles Best Practices – TheITBros
FSMO is operations performed by the Active Directory domain controllers, which require a mandatory server uniqueness for each operation
Active Directory FSMO Roles Best Practices – TheITBros
https://theitbros.com/fsmo-roles/
Active Directory FSMO Roles Best Practices – TheITBros
  • Activity Directory Server
AD DS Getting Started
Learn more about: AD DS Getting Started
AD DS Getting Started
https://learn.microsoft.com/en-us/windows-server/identity/ad-ds/ad-ds-getting-started
AD DS Getting Started
相關文章
Runspace練習
Excel Module
AccessDB Module
How to Scan for open portsTryhackme - Blaster