Get Information of domain controller
Get-NetDomainController
Get-NetDomainController | select-object Name
Get information on users in the domain
Get-NetUser
Get-NetUser -Username <username>
Get the list of all users
Get-NetUser | select samaccountname
Get the list of usernames, last logon, and password last set
Get-NetUser | select samaccountname, lastlogon, pwdlastset
Get-NetUser | select samaccountname, lastlogon, pwdlastset | Sort-Object -Property lastlogon
Get the list of usernames and their groups
Get-NetUser | select samaccountname, memberof
Get the list of all properties for users in the current domain
get-userproperty -Properties pwdlastset
Get description field from the user
Find-UserField -SearchField Description -SearchTerm "built"
Get-netuser | Select-Object samaccountname,description
Get-NetComputer
Get-NetComputer -FullData
Get-NetComputer -Computername <computername> -FullData
Get computers with operating system ""
Get-NetComputer -OperatingSystem "*Server 2016*"
Get the list of all computer names and operating systems
Get-NetComputer -fulldata | select samaccountname, operatingsystem, operatingsystemversion
List all groups of the domain
Get-NetGroup
Get-NetGroup -GroupName *admin*
Get-NetGroup -Domain <domain>
Get all the members of the group
Get-NetGroupMember -Groupname "Domain Admins" -Recurse
Get-NetGroupMember -Groupname "Domain Admins" -Recurse | select MemberName
Get the group membership of a user
Get-NetGroup -Username <username>
List all the local groups on a machine (needs admin privs on non dc machines)
Get-NetlocalGroup -Computername <computername> -ListGroups
Get a Member of all the local groups on a machine (needs admin privs on non dc machines)
Get-NetlocalGroup -Computername <computername> -Recurse
Get actively logged users on a computer (needs local admin privs)
Get-NetLoggedon -Computername <computername>
Get locally logged users on a computer (needs remote registry rights on the target)
Get-LoggedonLocal -Computername <computername>
Get the last logged users on a computer (needs admin rights and remote registry on the target)
Get-LastLoggedOn -ComputerName <computername>
