Find-LocalAdminAccess

Check the Domain for local Admin Access via SMB, WMI, or PSRemoting.

Light Version

iex(new-object net.webclient).downloadstring('https://raw.githubusercontent.com/Leo4j/Find-LocalAdminAccess/main/Find-LocalAdminAccess_Light.ps1')

Find-LocalAdminAccess

Find-LocalAdminAccess -Local -Username "Administrator" -Password "P@ssw0rd!"

Find-LocalAdminAccess -Domain ferrari.local -DomainController DC01.ferrari.local -Targets "Workstation01.ferrari.local,DC01.ferrari.local"

Full Version

Run as Current User, or provide credentials (WMI and PSRemoting only)

Optionally, provide a command to run on targets where you have Admin access

Load script:

iex(new-object net.webclient).downloadstring('https://raw.githubusercontent.com/Leo4j/Find-LocalAdminAccess/main/Find-LocalAdminAccess.ps1')

Usage (SMB):

Find-LocalAdminAccess -Method SMB

Find-LocalAdminAccess -Method SMB -Domain ferrari.local -DomainController DC01.ferrari.local

Find-LocalAdminAccess -Method SMB -Targets "Workstation01.ferrari.local,DC01.ferrari.local"

Find-LocalAdminAccess -Method SMB -Command "whoami /all" # Will run a command on targets where we are admin

Find-LocalAdminAccess -Method SMB -Command "whoami /all" -NoOutput # Will run a command on targets where we are admin and won't wait for output

Find-LocalAdminAccess -Method SMB -Targets "Workstation01.ferrari.local,DC01.ferrari.local" -Command "whoami /all"

Usage (WMI):

Find-LocalAdminAccess -Method WMI

Find-LocalAdminAccess -Method WMI -Domain ferrari.local -DomainController DC01.ferrari.local

Find-LocalAdminAccess -Method WMI -Targets "Workstation01.ferrari.local,DC01.ferrari.local"

Find-LocalAdminAccess -Method WMI -UserName "ferrari\Administrator" -Password "P@ssw0rd!"

Find-LocalAdminAccess -Method WMI -Command "whoami /all" # Will run a command on targets where we are admin

Find-LocalAdminAccess -Method WMI -Command "whoami /all" -NoOutput # Will run a command on targets where we are admin and won't wait for output

Find-LocalAdminAccess -Method WMI -Targets "Workstation01.ferrari.local,DC01.ferrari.local" -UserName "ferrari\Administrator" -Password "P@ssw0rd!" -Command "whoami /all"

Usage (PSRemoting):

Find-LocalAdminAccess -Method PSRemoting

Find-LocalAdminAccess -Method PSRemoting -Domain ferrari.local -DomainController DC01.ferrari.local

Find-LocalAdminAccess -Method PSRemoting -Targets c:\Users\Public\Documents\Targets.txt

Find-LocalAdminAccess -Method PSRemoting -UserName "ferrari\Administrator" -Password "P@ssw0rd!"

Find-LocalAdminAccess -Method PSRemoting -Command "whoami /all" # Will run a command on targets where we are admin

Find-LocalAdminAccess -Method PSRemoting -Command "whoami /all" -NoOutput # Will run a command on targets where we are admin and won't wait for output

Find-LocalAdminAccess -Method PSRemoting -Targets c:\Users\Public\Documents\Targets.txt -UserName "ferrari\Administrator" -Password "P@ssw0rd!" -Command "whoami /all"

Name		Name	Last commit message	Last commit date
Latest commit History 38 Commits
Find-LocalAdminAccess.ps1		Find-LocalAdminAccess.ps1
Find-LocalAdminAccess_Light.ps1		Find-LocalAdminAccess_Light.ps1
LICENSE		LICENSE
README.md		README.md

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Find-LocalAdminAccess.ps1

Find-LocalAdminAccess.ps1

Find-LocalAdminAccess_Light.ps1

Find-LocalAdminAccess_Light.ps1

LICENSE

LICENSE

README.md

README.md

Repository files navigation

Find-LocalAdminAccess

Light Version

Full Version

Load script:

Usage (SMB):

Usage (WMI):

Usage (PSRemoting):

About

Releases

Packages

Languages

License

Leo4j/Find-LocalAdminAccess

Folders and files

Latest commit

History

Repository files navigation

Find-LocalAdminAccess

Light Version

Full Version

Load script:

Usage (SMB):

Usage (WMI):

Usage (PSRemoting):

About

Resources

License

Stars

Watchers

Forks

Languages