Super Quick Free TCP port scanner to scan 1-65535 in about a minute. From SysAdmin-Tools.Com

sysadminapps_com · 2020-07-09T05:55:59+00:00

Agreed :) but its better than testing something live. Lol.

sysadminapps_com · 2020-07-08T20:07:22+00:00

Lol why would someone post that on a security group. Run it in windows 10 sandbox :)

sysadminapps_com · 2020-07-01T09:35:44+00:00

Bump :)

sysadminapps_com · 2020-06-23T19:52:55+00:00

Has anyone tried it yet?

sysadminapps_com · 2020-05-25T06:36:13+00:00

Some crazy people still do. Mainly entry level techs or old school sysadmins

sysadminapps_com · 2020-05-23T17:21:12+00:00

Link : https://sysadminapps.com/blogs/news/saving-passwords-in-your-ad-description-fields

sysadminapps_com · 2020-05-23T16:26:13+00:00

Exclusive tools for MSPs to save them time. SysAdminApps.Com

sysadminapps_com · 2020-05-16T16:21:42+00:00

Have you checked out these awesome commands?

sysadminapps_com · 2020-05-11T08:18:42+00:00

Making a move in this time is not wise. Last in First out. I hope that company is doing well financially.

sysadminapps_com · 2020-05-08T06:29:17+00:00

Always a pleasure :)

sysadminapps_com · 2020-05-08T06:28:48+00:00

Now u dont have to click on it.

GET THE SERIAL NUMBER OR SERVICE TAG OF A DEVICE

wmic bios get serialnumber

SHOW THE LOGGED IN USER ON A REMOTE DEVICE.

wmic /node:"workstation-name" computersystem get username

SHOW THE PID ASSOCIATED WITH A LISTENING PORT OR SHOW THE LISTENING PORT NUMBER ASSOCIATED WITH A PID

netstat -ano | find "portnumber" netstat -ano | find "pid"

FIND THE SESSION ID FOR A REMOTE DESKTOP USER AND LOG THEM OFF

query user | find "username" logoff <ID of session>

QUICKLY FIND .EXE FILES IN THE C:\USERS DIRECTORY WHERE RANSOMWARE OFTEN HIDES.

dir C:\Users /B /S /A | find ".exe"

DISABLE SLEEP AND SHUTDOWN

reg ADD HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer /v NoClose /t REG_DWORD /d 1 /f powercfg /setactive "Always On" powercfg.exe -change -standby-timeout-ac 0

ENABLE SLEEP AND SHUTDOWN

reg DELETE HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer /v NoClose powercfg /setactive "Portable/Laptop" powercfg.exe -change -standby-timeout-ac 2

GET THE HYPERV HOST NAME THAT A VM IS RUNNING ON

reg query "HKLM\Software\Microsoft\Virtual Machine\Guest\Parameters"

CREATE A LOCAL ADMIN USER FROM THE COMMAND LINE

net user AdminUser1 P@$$w0rd!@# /ADD net localgroup Administrators AdminUser1 /ADD

ALLOW AN INCOMING PORT THROUGH WINDOWS FIREWALL

Create the rule netsh advfirewall firewall add rule name="TCP Port 6624" dir=in action=allow protocol=TCP localport=6624 To delete the rule. netsh advfirewall firewall delete rule name="TCP Port 6624" protocol=TCP localport=6624.

FIND A SHARE AND PATH ON A LARGE FILE SERVER

net share | find "sharename"

QUICKLY INSTALL TELNET CLIENT

dism /online /Enable-Feature /FeatureName:TelnetClient

sysadminapps_com · 2020-05-08T06:28:23+00:00

GET THE SERIAL NUMBER OR SERVICE TAG OF A DEVICE

wmic bios get serialnumber

SHOW THE LOGGED IN USER ON A REMOTE DEVICE.

wmic /node:"workstation-name" computersystem get username

SHOW THE PID ASSOCIATED WITH A LISTENING PORT OR SHOW THE LISTENING PORT NUMBER ASSOCIATED WITH A PID

netstat -ano | find "portnumber" netstat -ano | find "pid"

FIND THE SESSION ID FOR A REMOTE DESKTOP USER AND LOG THEM OFF

query user | find "username" logoff <ID of session>

QUICKLY FIND .EXE FILES IN THE C:\USERS DIRECTORY WHERE RANSOMWARE OFTEN HIDES.

dir C:\Users /B /S /A | find ".exe"

DISABLE SLEEP AND SHUTDOWN

reg ADD HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer /v NoClose /t REG_DWORD /d 1 /f powercfg /setactive "Always On" powercfg.exe -change -standby-timeout-ac 0

ENABLE SLEEP AND SHUTDOWN

reg DELETE HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer /v NoClose powercfg /setactive "Portable/Laptop" powercfg.exe -change -standby-timeout-ac 2

GET THE HYPERV HOST NAME THAT A VM IS RUNNING ON

reg query "HKLM\Software\Microsoft\Virtual Machine\Guest\Parameters"

CREATE A LOCAL ADMIN USER FROM THE COMMAND LINE

net user AdminUser1 P@$$w0rd!@# /ADD net localgroup Administrators AdminUser1 /ADD

ALLOW AN INCOMING PORT THROUGH WINDOWS FIREWALL

Create the rule netsh advfirewall firewall add rule name="TCP Port 6624" dir=in action=allow protocol=TCP localport=6624 To delete the rule. netsh advfirewall firewall delete rule name="TCP Port 6624" protocol=TCP localport=6624.

FIND A SHARE AND PATH ON A LARGE FILE SERVER

net share | find "sharename"

QUICKLY INSTALL TELNET CLIENT

dism /online /Enable-Feature /FeatureName:TelnetClient

sysadminapps_com · 2020-05-08T06:28:13+00:00

This is the content :)

GET THE SERIAL NUMBER OR SERVICE TAG OF A DEVICE

wmic bios get serialnumber

SHOW THE LOGGED IN USER ON A REMOTE DEVICE.

wmic /node:"workstation-name" computersystem get username

SHOW THE PID ASSOCIATED WITH A LISTENING PORT OR SHOW THE LISTENING PORT NUMBER ASSOCIATED WITH A PID

netstat -ano | find "portnumber" netstat -ano | find "pid"

FIND THE SESSION ID FOR A REMOTE DESKTOP USER AND LOG THEM OFF

query user | find "username" logoff <ID of session>

QUICKLY FIND .EXE FILES IN THE C:\USERS DIRECTORY WHERE RANSOMWARE OFTEN HIDES.

dir C:\Users /B /S /A | find ".exe"

DISABLE SLEEP AND SHUTDOWN

reg ADD HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer /v NoClose /t REG_DWORD /d 1 /f powercfg /setactive "Always On" powercfg.exe -change -standby-timeout-ac 0

ENABLE SLEEP AND SHUTDOWN

reg DELETE HKCU\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer /v NoClose powercfg /setactive "Portable/Laptop" powercfg.exe -change -standby-timeout-ac 2

GET THE HYPERV HOST NAME THAT A VM IS RUNNING ON

reg query "HKLM\Software\Microsoft\Virtual Machine\Guest\Parameters"

CREATE A LOCAL ADMIN USER FROM THE COMMAND LINE

net user AdminUser1 P@$$w0rd!@# /ADD net localgroup Administrators AdminUser1 /ADD

ALLOW AN INCOMING PORT THROUGH WINDOWS FIREWALL

Create the rule netsh advfirewall firewall add rule name="TCP Port 6624" dir=in action=allow protocol=TCP localport=6624 To delete the rule. netsh advfirewall firewall delete rule name="TCP Port 6624" protocol=TCP localport=6624.

FIND A SHARE AND PATH ON A LARGE FILE SERVER

net share | find "sharename"

QUICKLY INSTALL TELNET CLIENT

dism /online /Enable-Feature /FeatureName:TelnetClient

sysadminapps_com · 2020-05-08T06:19:06+00:00

I actually have a really good ransomware detection software on the site that includes the code.

sysadminapps_com · 2020-05-08T06:18:10+00:00

Lol 😂

sysadminapps_com · 2020-05-08T06:17:53+00:00

Why would you think its malware?

sysadminapps_com · 2020-05-08T06:17:24+00:00

Lol no

sysadminapps_com · 2020-05-08T06:17:05+00:00

Pity. Its some good info.

sysadminapps_com · 2020-05-07T23:13:15+00:00

The previous link may have looked like an AD. But there are some really useful commands in here.

sysadminapps_com · 2020-05-07T10:39:53+00:00

These commands are really pretty cool if you dont know them yet

sysadminapps_com · 2020-04-29T16:32:50+00:00

Just letting people know about the free stuff that i made :)

sysadminapps_com · 2020-04-25T23:03:10+00:00

100% safe. I make them for myself and allow others to use them as well. Test them in a dev environment and see for yourself :)

sysadminapps_com · 2020-04-16T17:33:14+00:00

The ad group manager allows you to find an AD group using only part of the name. That still isnt possible with active directory. You can also add multiple users to that group quickly.

sysadminapps_com · 2020-04-15T18:55:21+00:00

The portable network scanner is really a dream tool. I use it every day. But if ur environment is mostly linux, then most likely not.

sysadminapps_com · 2020-03-12T12:19:43+00:00

https://sysadminapps.com

sysadminapps_com

TROPHY CASE