| Age | Commit message (Collapse) | Author | Files | Lines | |
|---|---|---|---|---|---|
| 2016-05-22 | Updated functions in Recon.psd1 | Harmj0y | 1 | -1/+13 | |
| 2016-05-22 | -Fixed bug in Get-NetGroupMember's ranged searching logic on PowerShell v3+ | Harmj0y | 1 | -123/+114 | |
| -Corrected parameter/variable scoping bug in several functions -TODO: fix begin{} scoping issues in Find-InterestingFile, Invoke-UserHunter, Invoke-ProcessHunter, Invoke-EventHunter, Invoke-ShareFinder, Invoke-FileFinder, Find-LocalAdminAccess, Invoke-EnumerateLocalAdmin -Other misc. fixes | |||||
| 2016-05-22 | Get-LoggedOnLocal now handles the situation when multiple SIDs are returned | Harmj0y | 1 | -101/+33 | |
| Get-LoggedOnLocal turned into a filter and given additional error handling Standardized tab/line spacing Removed Invoke-PSLoggedOn | |||||
| 2016-05-22 | Merge pull request #133 from breakersall/dev | HarmJ0y | 1 | -0/+143 | |
| Adds PSLoggedOn like functionality | |||||
| 2016-05-18 | Merge pull request #140 from Meatballs1/fix_groups_xml | HarmJ0y | 1 | -10/+32 | |
| PowerView - Fix Groups.xml Parsing | |||||
| 2016-05-13 | Logic bug fix in Get-NetDomainTrust | Harmj0y | 1 | -1/+1 | |
| 2016-05-13 | Get-NetDomainTrust now gets an -API option to enumerate trusts through ↵ | Harmj0y | 1 | -16/+169 | |
| DsEnumerateDomainTrusts() Logic bug fix for Get-DNSZone Bug fix for Get-NetLocalGroup | |||||
| 2016-05-12 | Fix groupsxml parsing | Meatballs | 1 | -10/+32 | |
| 2016-05-09 | Merge pull request #135 from Meatballs1/trust_sids | HarmJ0y | 1 | -0/+6 | |
| Retrieve Domain SIDs with -LDAP | |||||
| 2016-05-10 | Added Invoke-UserHunter field to keep output objects in sync. | Harmj0y | 1 | -0/+1 | |
| 2016-05-10 | Added name resolution to custom PSObject generated by Invoke-UserHunter. | Andy Robbins | 1 | -0/+20 | |
| 2016-05-09 | Began adding custom PSObject TypeNames to various PowerView output objects. | Harmj0y | 1 | -7/+27 | |
| 2016-05-09 | Retrieve Domain SIDs with -LDAP | Meatballs | 1 | -0/+6 | |
| 2016-05-05 | Adds PSLoggedOn like functionality | Matt Kelly | 1 | -0/+143 | |
| Adding in Get-LoggedOnLocal which uses HKU registry checks to see who is logged locally to a remote box and only requires user level access rights. The benefit over NetWkstaUserEnum is less user privileges required (admin for NetWkstaUserEnum) and is the same process PSLoggedOn uses. Invoke-PSLoggedOn launches both Get-LoggedOnLocal and Get-NetSessions and outputs the same format as PSLoggedOn.exe from Sysinternals. I did not change Invoke-UserHunter non-stealth to this option yet, but it is beneficial in that if you use both HKU and NetSessionEnum you only require basic user level rights not admin remote. | |||||
| 2016-05-03 | Added Get-RegistryMountedDrive | Harmj0y | 1 | -6/+120 | |
| 2016-04-27 | Modified Convert-DNSRecord to return the base64 encoded record for record ↵ | Harmj0y | 1 | -52/+26 | |
| types not currently handled. | |||||
| 2016-04-27 | Added Get-DNSZone and Get-DNSRecord to enumerate AD DNS information. | Harmj0y | 1 | -0/+360 | |
| Added Convert-DNSRecord (ported from Michael B. Smith's code at https://raw.githubusercontent.com/mmessano/PowerShell/master/dns-dump.ps1) - needs expansion work on record types | |||||
| 2016-04-25 | Changed some property types in Get-ObjectACL | Harmj0y | 1 | -2/+9 | |
| 2016-04-24 | added Request-SPNTicket to request kerberos tickets for specified SPNs | Harmj0y | 1 | -0/+48 | |
| 2016-04-24 | For PowerView, added $Searcher.CacheResults = $False to Get-DomainSearcher | Harmj0y | 1 | -19/+71 | |
| Added dispose() approach for the following cmdlets: Get-NetUser, Get-ObjectAcl/Add-ObjectAcl, Get-GUIDMap, Get-NetComputer, Get-ADObject, Get-NetOU, Get-NetSite, Get-NetSubnet, Get-NetGroup, Get-NetGroupMember, Get-DFSshare, Get-NetGPO, Get-NetDomainTrust | |||||
| 2016-04-24 | Merge pull request #128 from Meatballs1/fix_groups_xml | HarmJ0y | 1 | -2/+2 | |
| //Group -> //Groups | |||||
| 2016-04-11 | Change ComputerName default to the computer's name | leechristensen | 1 | -1/+1 | |
| Change ComputerName default so Disabled doesn't report error | |||||
| 2016-04-03 | //Group -> //Groups | Meatballs | 1 | -2/+2 | |
| 2016-03-18 | Bug fix in Find-GPOLocation | Harmj0y | 1 | -5/+9 | |
| 2016-03-15 | Added Get-SiteName to find the site a computer is a part of | Harmj0y | 1 | -101/+288 | |
| Added -ComputerName parameter to Get-NetGPO to enumerate all GPOs a given computer has applied Fixed bug in Find-GPOComputerAdmin and added site enumeration for GPO links | |||||
| 2016-03-11 | Additional error checking in Get-DFSshare | Harmj0y | 1 | -9/+10 | |
| 2016-03-09 | Fixed bug with Get-NetGroupMember and computer accounts. | Harmj0y | 1 | -33/+15 | |
| samaccounttype enumeration now more accurate. | |||||
| 2016-03-09 | fix for Find-GPOComputerAdmin | Harmj0y | 1 | -3/+15 | |
| 2016-03-09 | Bug fix for Invoke-EnumerateLocalAdmin | Harmj0y | 1 | -5/+4 | |
| 2016-03-09 | Removed Set-MacAttribute and Copy-ClonedFile | Harmj0y | 2 | -234/+117 | |
| Combined Convert-NT4toCanonical and Convert-DomainSimpletoNT4 into Convert-ADName | |||||
| 2016-03-07 | Added New-GPOImmediateTask | Harmj0y | 1 | -12/+220 | |
| 2016-03-07 | DomainOnly tweak | Harmj0y | 1 | -5/+4 | |
| 2016-03-07 | Added -DomainOnly flag to Invoke-EnumerateLocalAdmin | Harmj0y | 1 | -9/+23 | |
| 2016-03-07 | renamed output field for Get-NetLocalGroup API | Harmj0y | 1 | -1/+1 | |
| 2016-03-07 | Added NetLocalGroupGetMembers enumeration method for Get-NetLocalGroup with ↵ | Harmj0y | 1 | -151/+302 | |
| the -API flag Fixed threading specification in most threaded functions. | |||||
| 2016-03-07 | Parse DFSv1 PKT | Meatballs | 1 | -6/+198 | |
| 2016-03-06 | Added additional fields to Get-NetLocalGroup results. | Harmj0y | 1 | -22/+63 | |
| 2016-02-28 | Modified output of Find-GPOLocation to return more object information. | Harmj0y | 1 | -26/+48 | |
| 2016-02-28 | -fixed several bugs in Find-GPOLocation (-GroupName now works properly and ↵ | Harmj0y | 1 | -132/+147 | |
| Sites returned) -Find-GPOLocation with no arguments now returns all mappings -fixed parsing issue in Get-NetGPOGroup- names now properly extracted from restricted group templates | |||||
| 2016-02-11 | Most ldap-based search functions now accept a -Credential argument for ↵ | Harmj0y | 1 | -1084/+1427 | |
| querying from non-domain joined machines without a runas Changed several functions to filters, where appropriate. Get-NetShare, Get-NetSession, Get-NetLoggedOn, Get-NetRDPSession, Invoke-CheckLocalAdminAccess, Get-LastLoggedOn, Get-CachedRDPConnection, Get-NetProcess are now filters, better handle pipeline input, and now return an augmented result object with the queried ComputerName as a field Replaced RemoteUserName/RemotePassword with -Credential parameter in Get-CachedRDPConnection and Get-NetProcess modified output object for Get-NetShare to be a proper object Various bug fixes and better parameter validation | |||||
| 2015-12-29 | Added Find-ManagedSecurityGroups to readme | Stuart Morgan | 1 | -0/+2 | |
| 2015-12-29 | Sorted the recon.psd1 module import into alphabetical order | Stuart Morgan | 1 | -51/+51 | |
| 2015-12-29 | Added reference to function to powersploit.psd1 and recon.psd1 | Stuart Morgan | 1 | -0/+1 | |
| 2015-12-28 | Added Find-ManagedSecurityGroups | Stuart Morgan | 1 | -0/+71 | |
| 2015-12-18 | Set all module versions to 3.0 | Matt Graeber | 1 | -58/+1 | |
| Also cleaned up some module manifest cruft. | |||||
| 2015-12-16 | Removed version numbers from scripts | Matt Graeber | 1 | -6/+0 | |
| A module should maintain a version number not the individual scripts. | |||||
| 2015-12-16 | Removed all version numbers from scripts | Matt Graeber | 1 | -4/+0 | |
| Scripts in a module should not be individually versioned. Only the module should be versioned. | |||||
| 2015-12-14 | Get-NetDomain now not called if -ComputerName or -ComputerFile are passed ↵ | Harmj0y | 1 | -108/+122 | |
| for meta functions, in order to prevent failure when running on a non-domain joined machine took out FQDN Pester tests from Recon.tests.ps1 that used $env:userdnsdomain | |||||
| 2015-12-11 | Added Invoke-DowngradeAccount to set an account to use reversible encryption. | Harmj0y | 1 | -1/+117 | |
| 2015-12-11 | Domain local group query fix. | Harmj0y | 1 | -30/+140 | |
| Added ConvertFrom-UACValue to convert binary UAC values to human readable format. Corrected logic in Set-ADObject. | |||||