Powerview

## Commands used : 
powershell -EP Bypass
 . .\PowerView.ps1 to run the script

• Get-NetComputer command in PowerShell. This command will display all the information related to computers in AD.

• Get-NetGroup in PowerShell. The Get-NetGroup command in PowerView lists all groups in AD, which helps in identifying group memberships and potential targets for privilege escalation.

• Get-NetUser in PowerShell. Get-NetUser in PowerView retrieves detailed information about AD user accounts, such as usernames and group memberships.

• Get-NetOU - Lists all organizational units (OUs) in the domain.

• Get-NetSession - Lists active sessions on the domain.

• Get-NetLoggedon - Lists users currently logged on to machines.

• Get-NetProcess - Lists processes running on domain machines.

• Get-NetService - Lists services on domain machines.

• Get-NetDomainTrust - Lists domain trust relationships.

• Get-ObjectACL - Retrieves ACLs for a specified object.

• Find-InterestingDomainAcl - Finds interesting ACLs in the domain.

• Get-NetSPN - Lists service principal names (SPNs) in the domain.

• Invoke-ShareFinder - Finds shared folders in the domain.

• Invoke-UserHunter - Finds where domain admins are logged in.

• Invoke-CheckLocalAdminAccess - Checks if the current user has local admin access on specified machines.