Comments (1)
diff --git a/PowerView/powerview.ps1 b/PowerView/powerview.ps1
index cb8191a..6efeac2 100755
--- a/PowerView/powerview.ps1
+++ b/PowerView/powerview.ps1
@@ -3759,31 +3750,61 @@ function Get-NetFileServers {
[CmdletBinding()]
param(
[string]
- $Domain
+ $Domain,
+
+ [string[]]
+ $TargetUsers
)
$Servers = @()
- Get-NetUser -Domain $Domain | % {
- if($_.homedirectory){
- $temp = $_.homedirectory.split("\\")[2]
- if($temp -and ($temp -ne '')){
- $Servers += $temp
- }
- }
- if($_.scriptpath){
- $temp = $_.scriptpath.split("\\")[2]
- if($temp -and ($temp -ne '')){
- $Servers += $temp
- }
- }
- if($_.profilepath){
- $temp = $_.profilepath.split("\\")[2]
- if($temp -and ($temp -ne '')){
- $Servers += $temp
- }
- }
- }
+ if ($TargetUsers)
+ {
+ foreach ($user in $TargetUsers)
+ {
+ Get-NetUser -UserName $user -Domain $Domain | % {
+ if($_.homedirectory){
+ $temp = $_.homedirectory.split("\\")[2]
+ if($temp -and ($temp -ne '')){
+ $Servers += $temp
+ }
+ }
+ if($_.scriptpath){
+ $temp = $_.scriptpath.split("\\")[2]
+ if($temp -and ($temp -ne '')){
+ $Servers += $temp
+ }
+ }
+ if($_.profilepath){
+ $temp = $_.profilepath.split("\\")[2]
+ if($temp -and ($temp -ne '')){
+ $Servers += $temp
+ }
+ }
+ }
+ }
+ } else {
+ Get-NetUser -Domain $Domain | % {
+ if($_.homedirectory){
+ $temp = $_.homedirectory.split("\\")[2]
+ if($temp -and ($temp -ne '')){
+ $Servers += $temp
+ }
+ }
+ if($_.scriptpath){
+ $temp = $_.scriptpath.split("\\")[2]
+ if($temp -and ($temp -ne '')){
+ $Servers += $temp
+ }
+ }
+ if($_.profilepath){
+ $temp = $_.profilepath.split("\\")[2]
+ if($temp -and ($temp -ne '')){
+ $Servers += $temp
+ }
+ }
+ }
+ }
# uniquify the fileserver list and return it
$($Servers | Sort-Object -Unique)
@@ -6867,7 +6888,7 @@ function Invoke-StealthUserHunter {
if ($Source -eq "File"){
Write-Verbose "[*] Querying domain $targetDomain for File Serve
rs..."
- [Array]$Hosts = Get-NetFileServers -Domain $targetDomain
+ [Array]$Hosts = Get-NetFileServers -TargetUsers $TargetUsers -D
omain $targetDomain
}
elseif ($Source -eq "DC"){
@@ -6876,7 +6897,7 @@ function Invoke-StealthUserHunter {
}
elseif ($Source -eq "All") {
Write-Verbose "[*] Querying domain $targetDomain for hosts..."
- [Array]$Hosts = Get-NetFileServers -Domain $targetDomain
+ [Array]$Hosts = Get-NetFileServers -TargetUsers $TargetUsers
-Domain $targetDomain
$Hosts += Get-NetDomainControllers -Domain $targetDomain | % {$
_.Name}
}
}
from powertools.
Related Issues (20)
- Typo Line 38 ReflectivePick.cpp HOT 1
- Get-NetGroup fails with Large > 1500 members HOT 6
- StealthUserHunter redundant WINDOWS4.dev.testlab.local HOT 1
- Get-Proxy settings HOT 7
- Get-OUs HOT 4
- Get-DFSShares HOT 12
- Invoke-FindTrustUser* filter users on *@domain.com ? HOT 4
- Get-UnattendedInstallFiles looking for incorrect filename HOT 2
- Support -Credential option for Invoke-FileFinder HOT 7
- Get-GptTmpl non domain joined User/PC HOT 2
- PageSize set in individual functions HOT 2
- PowerUp WebConfig Misparsed HOT 5
- Powershell signing HOT 4
- PowerView:Invoke-MapDomainTrust Exception
- Errors when Importing into Powershell HOT 2
- Wik-Readme.md PowerView 2.0 bad cmdlet name
- Error 0x80070005 in Invoke_WMI HOT 1
- Get-NetUser | select cn not working HOT 2
- Issue on startup
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from powertools.