Active Directory Basics
This room contains info about Windows Active Directory and tools to enumerate them.
For complete tryhackme path, refer the link
Task 8 - Hands-On Lab
References
Open powershell as admin user and execute the following to load a powershell shell with execution policy bypassed.
powershell -ep bypass
The following are few example commands to retrieve information from domain members.
get-netcomputer -fulldata | select operatingsystem
get-netuser | select cn
get-netuser | where {$_.name -match "SQL"}
get-netgroup