Manually Enumerate AD
Users, Groups, Computers
| Area | AD Module | PowerView |
|---|
| Users | Get-ADUser -Filter * | Get-DomainUser |
| Computer | Get-ADComputer -Filter * | Get-DomainComputer |
| Domain | Get-ADDomain | Get-Domain |
| Domain-Controller | Get-ADDomainController | Get-ADDomainController |
| Domain-Admin | Get-ADGroup -Identity 'Domain Admins' -Properties * | Get-DomainUser -Identity 'Domain Admins |
| Domain-Admins | Get-ADGroupMember -Identity 'Domain Admins' -Recursive | Get-DomainGroupMember -Identity 'Domain Admins' -Recurse |
| Enterprise-Admins | Get-ADGroupMember -Identity 'Enterprise Admins' -Recurse | |
| Kerberos Policy | | (Get-DomainPoliay).KerberosPolicy |
| My groups | | Get-ADPrincipalGroupMembership -Identity studentuser21 |
| Groups for User | | ` Get-DomainGroup -MemberIdentity studentuser21 |
| Groups for User | Get-ADPrincipalGroupMembership -Identity studentuser1 | ` Get-DomainGroup -UserName studentuser21 |
GPO, OUs, RestrictedGroups
| Area | AD Module | PowerView |
|---|
| Restricted Groups | | Get-DomainGPOLocalGroup |
| List Domain OUs | Get-ADOrganizationalUnit -Filter * -Properties * | `Get-DomainOU |