- 综合排序
- 最热优先
- 最新优先
- 来自专栏FreeBuf
记一次编写域账号弱口令审计工具
-contains "True") { Write-Host "删除成功" }else{ Write-Host "删除失败" :JC ||" Write-Host "|| Version:2.0.1 ||" Write-Host "===================== ========" Write-Host "=== 选项 ===" Write-Host "| 1 获取域内所有域用户账户" Write-Host "| 2 为域内的所有用户账户尝试注册SPN" Write-Host "| 3 获取现有SPN的凭据的Hash" Write-Host "| 4 爆破获得的Hash" Write-Host "| 5 删除注册的SPN" Write-Host "| 6 使用SPN审计获得的密码通过LDAP方式再次进行审计" Write-Host "| 7 全部运行" Write-Host
1.5K00发布于 2019-11-13 - 来自专栏网络安全技术点滴分享
红队终端:高级系统枚举与权限提升工具详解
"`n[+] 系统信息:" Write-Host "操作系统: $($os.Caption) | 版本: $($os.Version)" Write-Host "CPU: $($cpu.Name )" Write-Host "`n[+] 系统用户:" $users | ForEach-Object { Write-Host "用户: $($_.Name) | 域: $($_. ; break } 'help' { Write-Host "`n[+] 可用命令:" Write-Host "'sysinfo ' - 显示系统信息" Write-Host "'network' - 扫描开放端口" Write-Host "'priv' - 检查权限提升机会 " Write-Host "'rev' - 启动反向Shell后门" Write-Host "'persistence' - 通过计划任务设置持久化
20810编辑于 2025-08-23 - 来自专栏Khan安全团队
漏洞告之:SMBv3协议远程代码执行漏洞(附自查脚本)
$WindowsVersion = Get-ComputerInfo | Select-Object -ExpandProperty WindowsVersion Write-Host "[*] ." } Elseif ($WindowsVersion -eq 1909) { Write-Host "[*] CVE-2020-0976 is applicable to your Windows Version." } Else { Write-Host "[+] CVE-2020-0976 is not applicable to $fix = Get-HotFix -Id KB4551762 -ErrorAction SilentlyContinue if ($fix) { Write-Host "" Write-Host "================ $title ================" Write-Host "1: Press '1' for check
1.3K20发布于 2020-03-20 OpenClaw 极速上手指南:5分钟完成部署与配置并接入钉钉机器人
"✓ 下载完成: $fileName" -ForegroundColor Green return $true } catch { Write-Host "方法 "✓ Git: $git_size" -ForegroundColor Green} else { Write-Host "× Git: 下载失败" -ForegroundColor Red} (Test-Path $git_path)) { Write-Host "`n=== Git下载备用方案 ===" -ForegroundColor Yellow Write-Host "1 手动下载地址: $url_git" Write-Host "2. 或使用国内镜像: https://npm.taobao.org/mirrors/git-for-windows/" Write-Host "3.
2.6K00编辑于 2026-03-08- 来自专栏毛毛v5
PowerShell监控outlook新邮件到达PowerShell监控outlook新邮件到达
exit } } $test ='abc' $vars = Get-Variable #Write-Host ($vars | Format-List | Out-String) try{ if($outlookWasAlreadyRunning){ write-host "ok..." #write-host "" #$outline = Get-Event #$vars = Get-Variable #write-host '$(outline)' #Write-Host ($Args | Format-List | Out-String) #Write-Host ($args Write-Host $mail.Subject Write-Host $mail.Body write-host "" }
93020编辑于 2021-12-06 - 来自专栏ZKEASOFT
使用PowerShell自动部署ASP.NetCore程序到IIS
will install to $WebPath" Write-Host "After installation, you can visit the site with http://localhost :8080" Write-Host "Installation started. Write-Host "Checking IIS status..." -Name AspNetCoreModule -ErrorAction Ignore if($aspNetCoreModule) { Write-Host "IIS ASPNetCoreModule is ready:" Write-Host $aspNetCoreModule.Name $aspNetCoreModule.Image } else { Write-Host "Downloading
4.1K170发布于 2018-03-01 - 来自专栏Windows技术交流
卸载virtio驱动
| ForEach-Object { $_.Matches } | ForEach-Object { $_.Value }#$OEMNumbersif($OEMNumbers -eq $null){#Write-Host "get null"}else{foreach ($OEMNumber in $OEMNumbers) { Write-Host $OEMNumber Write-Host "Deleting $OEMNumber" pnputil.exe -f -d $OEMNumber Write-Host "`n`n"}}$TencentDrivers2 = pnputil.exe -e "get null"}else{foreach ($OEMNumber in $OEMNumbers) { Write-Host $OEMNumber Write-Host "Deleting $OEMNumber" pnputil.exe -f -d $OEMNumber Write-Host "`n`n"}}pnputil.exe -e
43200编辑于 2025-01-16 - 来自专栏洛米唯熊
Win-SMBGhost-RCE漏洞检测防御
$fix = Get-HotFix -Id KB4551762 -ErrorAction SilentlyContinue if($fix) { Write-Host You're not vulnerable ***" return } Else { Write-Host "[-] Windows Update $($kb) for CVE-2020-0796" Write-Host "3: Press '3' Enable SMBv3 Compression" Write-Host "Q: Press ' Write-Host "SMBv3 Compression is set to enabled." } Elseif ($check.DisableCompression -eq 1) { Write-Host "SMBv3 Compression is disabled." } } # End function CheckRegSmbv3Compression
90200发布于 2020-03-16 视频抽帧完全指南:使用PowerShell批量提取与优化图片序列
"`n 处理统计:" -ForegroundColor Yellow Write-Host " 总文件数: $totalFiles" -ForegroundColor White Write-Host "`n 处理计划:" -ForegroundColor Yellow Write-Host " 原始文件数: $totalFiles" -ForegroundColor White Write-Host Blue if ($Preview) { Write-Host "`n 预览处理效果:" -ForegroundColor Magenta Write-Host -ForegroundColor Green Write-Host " 最终统计:" -ForegroundColor Yellow Write-Host " 原始文件数: $($originalFiles.Count Write-Host " 备份位置: $backupFolder" -ForegroundColor Cyan Write-Host "`n 最终文件列表:" -ForegroundColor
59810编辑于 2025-09-28- 来自专栏代码编写世界
Git使用经验总结8-Git仓库历史记录清除
-File if ($files.Count -eq 0) { Write-Host "⚠️ 当前目录下没有文件。" 请先运行:git remote add origin <url>" -ForegroundColor Red exit 1 } Write-Host " 准备逐个提交 $($files.Count -ForegroundColor Cyan foreach ($file in $files) { $filename = $file.Name Write-Host "`n--- 处理文件 + 重试最多3次 $retry = 3 $success = $false while ($retry -gt 0 -and -not $success) { Write-Host -ForegroundColor Red } } Write-Host "`n 所有文件处理完成!" -ForegroundColor Magenta 3.
47620编辑于 2025-11-24 - 来自专栏Vincent-yuan
IIS自动发布脚本
auto_iis_deploy.ps1 #iis自动部署脚本 param( [string]$siteName = "default", [string]$port = "80" ) Write-Host "siteName:$siteName,port:$port" $physicalPath="d:\www\$siteName" Import-Module WebAdministration Write-Host (Test-Path $physicalPath)) { mkdir $physicalPath } #创建站点 Write-Host "create or update site.." if "start website" Start-Website -Name $siteName #启动应用程序池 Write-Host "start webAppPool" Start-WebAppPool -Name $siteName Write-Host "$siteName successfully started" 这里设置的是一个空站点,可以自己设置文件路径;这里的路径是 $physicalPath
2K10发布于 2020-11-12 - 来自专栏linux运维
脚本错误处理问题:脚本错误处理机制不健全,导致问题难以发现
{ # 可能引发异常的代码 $result = 10 / 0 } catch [System.DivideByZeroException] { Write-Host "Error: Division by zero" -ForegroundColor Red exit 1 } catch { Write-Host "An unexpected error occurred: $_" -ForegroundColor Red exit 1 } finally { Write-Host "Cleaning { # 可能引发异常的代码 $result = 10 / 0 } catch [System.DivideByZeroException] { Write-Host error occurred: $_" -ForegroundColor Red exit 1 } finally { Write-Host "Cleaning
65810编辑于 2025-02-07 - 来自专栏多能鄙事
重装Windows 10后常用软件的下载
为节省以后的时间,写个小的PowerShell脚本,如下: Write-Host "Get Access ..." $Access_Url = "ms-windows-store://pdp/? Start-Process "https://www.gimp.org/downloads/" Write-Host "Get GraphPad Prism ..." ProductId=cfq7ttc0k7c3" Start-Process $Publisher_Url Start-Sleep -Seconds 15 Write-Host "Get R ..." Start-Process "https://www.texstudio.org/" Write-Host "Get Ubuntu ..." sku=Community" Start-Process $Visual_Studio_Url Write-Host "Get Word ..."
1.2K00发布于 2021-05-12 - 来自专栏木宛城主
SharePoint自动化部署,利用PowerShell 导入用户至AD——PART II
Domain Name不能为空 return } if(IsNullOrEmpty($AdContainer)){ Write-Host } else { [bool] $DataValid=$true if(IsNullOrEmpty($AdUser)){ Write-Host Name不能为空 $DataValid=$false } if(IsNullOrEmpty($AdUserPwd)){ Write-Host ForEach-Object{ if(IsUserExist -ctx $CurrentContext -userName $_.LogIn) { Write-Host 用户 $_.LogIn 创建成功 } } Write-Host 命令执行结束 } else { Write-Host 无效的文件路径 Write-Host
1.9K80发布于 2018-01-11 - 来自专栏木宛城主
PowerShell 批量签入SharePoint Document Library中的文件
string]$url){ $spWeb=Get-SPWeb $url $spDocument=$spWeb.Lists.TryGetList("Documents"); Write-Host "需要签入文件的文档库:$($spDocument.Title)" $files=$spDocument.CheckedOutFiles Write-Host "需要签入的文件个数 spDocument.GetItemById( $_.ListItemId); $docItem.File.CheckIn("Administrator Check In"); Write-Host
1.9K100发布于 2018-01-11 - 来自专栏linux运维
脚本调试问题:脚本调试困难,难以定位错误
PowerShell 脚本常见调试方法使用 Write-Host 打印变量值 在关键位置使用 Write-Host 打印变量值,帮助理解变量的状态。 $var = "Hello" Write-Host "Variable value: $var"使用 Set-PSDebug 开启调试模式 使用 Set-PSDebug 开启调试模式,显示每一步执行的命令 Set-PSDebug -Trace 1 $var = "Hello" if ($var -eq "Hello") { Write-Host "Match" } else { Write-Host [string]$var ) Write-Debug "Variable value: $var" if ($var -eq "Hello") { Write-Host "Match" } else { Write-Host "No match" } }Test-Function -var "Hello" -Debug使用 ISE 或
74310编辑于 2025-02-07 - 来自专栏linux运维
脚本性能问题:脚本执行效率低,影响系统性能
# 不推荐 foreach ($item in (Get-ChildItem C:\path\to\directory)) { Write-Host $item.Name }# 推荐 Get-ChildItem C:\path\to\directory | ForEach-Object { Write-Host $_.Name }使用 Select-Object 过滤对象 Select-Object 可以高效地过滤和选择对象属性 Get-ChildItem C:\path\to\directory foreach ($file in $files) { if ($file.Length -gt 1MB) { Write-Host # 动态生成并执行代码 $code = 'Write-Host "Hello, World!"' ; } } '@ Write-Host ([MyClass]::HelloWorld())通用建议减少 I/O 操作 尽量减少文件读写和网络请求等 I/O 操作,这些操作通常比较耗时。
61810编辑于 2025-02-07 - 来自专栏鸿鹄实验室
Bypass Windows Defender Reverse Shell
1、字符串拼接 PS C:\Users\Administrator> $context = "amsi" + "context" PS C:\Users\Administrator> Write-Host $context 2、ASCII码转换 PS C:\Users\Administrator> Write-Host([char]97+[char]109+[char]115+[char]105+[char [char]120+[char]116) 3、变量拼接 PS C:\Users\Administrator> $var = "context" PS C:\Users\Administrator> Write-Host "amsi+$var"amsi+context PSC:\Users\Administrator> Write-Host "amsi$var" 4、字符串格式化 PS C:\Users\Administrator > $string = "amsi{0}{1}" -f "con","text" PS C:\Users\Administrator> Write-Host $string 5、字符串替换 PS C:
1.4K40发布于 2021-04-15 - 来自专栏linux运维
脚本语法错误:脚本编写时语法错误,无法执行
命令拼写错误:如 Write-Host 写成 Write-Host。路径错误:文件路径或命令路径错误。 if ($var -eq "value") { Write-Host "Match" } else { Write-Host "No match" }检查变量引用 确保变量引用正确。 $var = "Hello" Write-Host "$var World"检查命令拼写 确保所有命令拼写正确。Write-Host "Hello, World!"
2.6K10编辑于 2025-02-07 - 来自专栏鸿鹄实验室
获取已控机器本地保存的RDP密码
RegPath = "Registry::HKEY_USERS\"+$User.SID+"\Software\Microsoft\Terminal Server Client\Servers\" Write-Host "User:"$User.Name Write-Host "SID:"$User.SID Write-Host "Status:"$User.Status Try { $QueryPath = dir $RegPath -Name -ErrorAction Stop } Catch { Write-Host "No RDP Connections History" Write-Host "----------------------------------" continue } foreach($Name in $QueryPath "User:"$User Write-Host "Server:"$Name } Catch { Write-Host
4.2K20发布于 2021-04-15
腾讯云开发者
Copyright © 2013 - 2026 Tencent Cloud. All Rights Reserved. 腾讯云 版权所有
深圳市腾讯计算机系统有限公司 ICP备案/许可证号:粤B2-20090059 
粤公网安备44030502008569号
腾讯云计算(北京)有限责任公司 京ICP证150476号 | 京ICP备11018762号