PowerView
A Powershell’s script to gain network situational awareness on Windows domain.
Enabling PowerView on PowerShell
To start PowerView
Enumeration
# List domain users
Get-NetUser | select cn
# List domain groups
Get-NetGroup -GroupName *admin*
# Get shared folders
Invoke-ShareFinder
# Get operating systems running
Get-NetComputer -fulldata | select operatingsystem
# Find files or directories
Get-ChildItem -r -Filter "*.txt" -Name