Enumerating Groups

PowerView

Get all groups in current domain

Get-NetGroup

Get all groups in another domain

Get-NetGroup -Domain <DOMAIN NAME>

Get all groups with full properties in current domain

Get-NetGroup -FullData

Get all groups with full properties in another domain

Get-NetGroup -Domain <DOMAIN NAME> -FullData

Get all properties of a specific group in current domain

Get-NetGroup -GroupName <GROUP NAME>  -FullData

Get all properties of a specific group in another domain

Get-NetGroup -GroupName <GROUP NAME> -Domain <DOMAIN NAME>  -FullData

Get all groups containing the word "admin" in group name on current domain

Get-NetGroup *admin*

Get all groups containing the word "admin" in group name on another domain

Get-NetGroup *admin* -Domain <DOMAIN NAME>

Get group membership of a specific user

Get group membership of a specific user from another domain

Get all members of a specific group

Get all members of a specific group from another domain

NOTE

To enumerate the members of local group, LOCAL ADMINISTRATOR privilege is required

Get all local groups on current machine, which have membership of administrator groups on DC

Get all local groups on another machine

Get details about members of all local groups on current machine

Get details about members of all local groups on another machine

Active Directory Module

Get all groups in current domain

Get all groups in another domain

Get all groups in current domain with all properties

Get all groups in another domain with all properties

Get all groups containing the word "admin" in group name on current domain

Get all groups containing the word "admin" in group name on another domain

Get group membership of a specific user from current domain

Get group membership of a specific user from another domain

Get all members of a specific group

Get all members of a specific group

PreviousEnumerating Domain PolicyNextEnumerating Log On & Log Off Activities

Last updated