> System Information
| Command | Description | Example |
|---|---|---|
systeminfo |
Display detailed system configuration | systeminfo | findstr /B /C:"OS Name" /C:"OS Version" |
wmic qfe list |
List installed updates/hotfixes | wmic qfe list brief |
net statistics workstation |
Show network statistics | net statistics workstation |
> User & Account Management
| Command | Description | Example |
|---|---|---|
net user |
List/create/modify user accounts | net user hacker /add |
net localgroup |
Manage local groups | net localgroup Administrators hacker /add |
whoami /priv |
Show current user privileges | whoami /priv |
> Network Security
| Command | Description | Example |
|---|---|---|
netsh advfirewall |
Configure Windows Firewall | netsh advfirewall set allprofiles state on |
netstat -ano |
Show active connections with PIDs | netstat -ano | findstr LISTENING |
nslookup |
DNS diagnostic tool | nslookup example.com |
> PowerShell Security Cmdlets
| Command | Description | Example |
|---|---|---|
Get-MpComputerStatus |
Check Windows Defender status | Get-MpComputerStatus | select RealTimeProtectionEnabled |
Get-NetFirewallRule |
List firewall rules | Get-NetFirewallRule | Where-Object {$_.Enabled -eq "True"} |
Test-NetConnection |
Network connectivity tester | Test-NetConnection -ComputerName google.com -Port 443 |
> Security Configuration
| Command | Description | Example |
|---|---|---|
secedit /export |
Export security policy | secedit /export /cfg secpolicy.inf |
auditpol /get /category:* |
View audit policies | auditpol /get /category:* |
gpresult /r |
Check applied Group Policies | gpresult /r |