Category: Commands

Verify Connectivity to a Remote Computer

Verify Connectivity to a Remote Computer

Telnet from a Windows Machine

When providing accessible public services a requirement may arise to test the connectivity externally. This can be done using the built in command line Telnet subject to the Telnet Windows feature is installed. This is unlikely as in most scenarios, Telnet is only installed if required. Additionally, using Putty you can achieve the same result, however try downloading Putty through some Proxy’s and you wont have much luck. But using the built in Windows 10 PowerShell command Test-NetConnection, this is easily achiveable. If you need to test SMTP, HTTP, HTTPS, running  the below command can provide you with either “True” or “False”.

Test-NetConnection -Port 80 -ComputerName | ft TcpTestSucceeded


Creating Self-Signed Certificates or Certificate Service Request with OpenSSL

Creating Self-Signed Certificates or Certificate Service Request with OpenSSL

Creating Certificates with OpenSSL


One of the most versatile SSL tools is OpenSSL which is an open source implementation of the SSL protocol. There are versions of OpenSSL for nearly every platform, including Windows, Linux, and Mac OS X. OpenSSL is commonly used to create the CSR and private key for many different platforms, including Apache. However, it also has hundreds of different functions that allow you to view the details of a CSR or certificate, compare an MD5 hash of the certificate and private key (to make sure they match), verify that a certificate is installed properly on any website, and convert the certificate to a different format. A compiled version of OpenSSL for Windows can be found attached below.

Place the unzipped folder on the C: drive. Then open a command prompt and type CD C:\openssl-1.0.2h-x64_86-win64


Generate a new private key and Certificate Signing Request

openssl req -out CSR.csr -new -newkey rsa:2048 -nodes -keyout privateKey.key


Generate a self-signed certificate

openssl req -x509 -sha256 -nodes -days 365 -newkey rsa:2048 -keyout privateKey.key -out certificate.crt


Generate a certificate signing request (CSR) for an existing private key

openssl req -out CSR.csr -key privateKey.key -new


Generate a certificate signing request based on an existing certificate

openssl x509 -x509toreq -in certificate.crt -out CSR.csr -signkey privateKey.key


Remove a passphrase from a private key

openssl rsa -in privateKey.pem -out newPrivateKey.pem


Check a Certificate Signing Request (CSR)

openssl req -text -noout -verify -in CSR.csr


Check a private key

openssl rsa -in privateKey.key -check


Check a certificate

openssl x509 -in certificate.crt -text -noout


Check a PKCS#12 file (.pfx or .p12)

openssl pkcs12 -info -in keyStore.p12




Command Line Cheat Sheet

Command Line Cheat Sheet

Some useful command lines:

Find which Logon Server

Echo %logonserver%

Find all Domain Controllers

Nltest /dclist:[Domain Name]

Machine Up Time:

systeminfo | find /i "Boot Time"

Some common run commands: Click Start > Run (or Windows key + R):

Accessibility Options                   access.cpl
Add New Hardware                     sysdm.cpl
Add/Remove Programs              appwiz.cpl
Date/Time Properties                 timedate.cpl
Display Properties                       desk.cpl
FindFast                                        findfast.cpl
Internet Properties                     inetcpl.cpl
Keyboard Properties                   main.cpl
Microsoft Exchange                    mlcfg32.cpl
Network Properties                     netcpl.cpl
Password Properties                   password.cpl
Regional Settings                         intl.cpl
System Properties                       sysdm.cpl
Device Manager                           Devmgmt.msc
Disk Management                       Diskmgmt.msc
AD Users & Computers              Dsa.msc

FTP command

ftp://username:[email protected]

Recycle Bin

start shell:RecycleBinFolder

Find Hidden Devices in Device Manager

Set  devmgr_show_nonpresent_devices=1

Find Hardware Spec of a PC


Active Directory


Group Policy Update – no timeout

gpupdate /force /wait:-1

Boot to safe mode


Run as Admin

Runas /user:domain\Username cmd

Run any Command remotely

Winrs -r:PC1 ipconfig (or any command)

Disable Firewall remotely (this is deprecated in Server 2012)

Winrs -r:PC1 netsh firewall set opmode disable

Disable Firewall remotely Server 2012 +

Winrs -r:PC1 netsh advfirewall firewall set opmode disable

Get MAC address

Getmac -s

Disk Management

Diskpart.exe - disk management utility through CMD

Scan the integrity of all protected system files and replaces incorrect versions with correct Microsoft versions.

sfc /scannow

Replicate Domain Controllers

Repadmin /replicate
Open a PSSession

Open a PSSession

How to run commands including PowerShell commands on a remote machine using PSsession

An alternative way to run commands remotely you can open a PS Session to a remote machine. What ever you type in the PS Session command prompt will run on the remote machine.

• Create a session (New-PSSession)
• Use the session (Enter-PSSession)
• Leave the session (Exit-PSSession or simply Exit)
• Close the session (Remove-PSSession)

Get AD Group and Members Of

Get AD Group and Members Of

Find members of an Active Directory Group

In order to retrieve a group and all of its members run the following in PowerShell. You will need the AD PowerShell module which is installed with RSAT.

Get-ADGroup -Filter 'groupcategory -eq "distribution"' |
#You can filter -eq distribution or security or *

          [email protected]{GroupName=$_.Name;Member=''}

          $_ | Get-ADGroupMember -ea 0 -recurs |



                    New-Object psObject -Property $hash


          } | 

     sort groupname,member | export-csv c:\group.csv