This page includes both cmd and powershell commands, realistically, all of them should run from powershell anyway.

IP Configuration (ipconfig)

The ipconfig command is a command-line utility used to display and manage the IP address assigned to a machine.

ipconfig [CMD]

ipconfig

Displays the basic TCP/IP configuration for all adapters.

ipconfig /all [CMD]

ipconfig /all

Displays the full TCP/IP configuration for all adapters.

ipconfig /release [CMD]

ipconfig /release

Releases the IP address assigned to the computer.

ipconfig /renew [CMD]

ipconfig /renew

Renews the IP address assigned to the computer.

ipconfig /flushdns [CMD]

ipconfig /flushdns

Purges the DNS resolver cache.

ipconfig /registerdns [CMD]

ipconfig /registerdns

Refreshes DHCP leases and re-registers DNS names.

ipconfig /displaydns [CMD]

ipconfig /displaydns

Displays DNS cache contents.

ipconfig (IPv6 & advanced) [CMD]

ipconfig /allcompartments
ipconfig /release6
ipconfig /renew6
ipconfig /showclassid
ipconfig /setclassid
ipconfig /showclassid6
ipconfig /setclassid6
ipconfig /flushdns6

Windows Repair (USE THIS IF WINDOWS IS ACTING UP HELLA WEIRD)

DISM RestoreHealth [CMD]

DISM /Online /Cleanup-Image /RestoreHealth

SFC Scan (run after DISM) [CMD]

SFC /scannow

SFC Scan (after reboot) [CMD]

SFC /scannow

Reset Internet Settings (G.O.A.T.) [CMD]

RunDll32.exe InetCpl.cpl,ResetIEtoDefaults

Network Drive Management

List Mapped Drives [CMD]

net use

Remove Mapping [CMD]

net use <drive letter>: /delete

Recreate Mapping [CMD]

net use <drive letter>: \\server\share /persistent:yes

Delete All Mappings [CMD]

net use * /delete

Persistently Map Drive [CMD]

net use /persistent:yes h: \\VBoxSvr\Win11\Documents

User Management

Create Local User [CMD]

net user "user.name" password /add

Add to Administrators [CMD]

net localgroup administrators "user.name" /add

Remove from Administrators [CMD]

net localgroup administrators "user.name" /delete

Delete User [CMD]

net user "user.name" /delete

Disable Built-in Accounts [CMD]

net user "Administrator" /active:no
net user "Guest" /active:no

Power & System

Disable Hibernation [CMD]

powercfg.exe /Hibernate off

Compact OS [CMD]

Compact.exe /CompactOS:always

Rename Computer [PowerShell]

Rename-Computer -NewName "YourNewHostname"

Sessions

List Sessions [CMD]

query session

Logoff Session [CMD]

logoff {number}

Windows Fixes

Fix Windows 11 Right Click [CMD]

reg.exe add "HKCU\Software\Classes\CLSID\{86ca1aa0-34aa-4e8b-a509-50c905bae2a2}\InprocServer32" /f /ve

Fix Edge Alt Key [CMD]

reg add HKLM\SOFTWARE\Policies\Microsoft\Edge /v ConfigureKeyboardShortcuts /d {"disabled":["focus_settings_and_more"]}

Disable Widgets [CMD]

reg add HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced /v TaskbarDa /t REG_DWORD /d 0

Fix Windows Update Missing [CMD]

reg delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\Explorer" /v SettingsPageVisibility /f

Disable Telemetry (May auto-undo itself on non-enterprise windows versions) [CMD]

reg add HKLM\SOFTWARE\Policies\Microsoft\Windows\DataCollection /v AllowTelemetry /t REG_DWORD /d 0 /f

Active Directory

Check Password Expiry [PowerShell]

Get-ADUser -identity INSERTclientUSERNAMEHERE -properties PasswordLastSet, PasswordExpired, PasswordNeverExpires | ft Name, PasswordLastSet, PasswordExpired, PasswordNeverExpires

Force AD Sync [PowerShell]

start-adsyncsynccycle -policytype delta

Join Domain [PowerShell]

add-computer -domainname "YourDomainName" -restart

Apps & Installation

Install New Teams [PowerShell]

Add-ProvisionedAppPackage -Online -PackagePath "MSTeams-x64.msix" -SkipLicense

Install OpenSSH [PowerShell]

Add-WindowsCapability -Online -Name OpenSSH.Server
Start-Service sshd
Set-Service -Name sshd -StartupType 'Automatic'

Install RSAT [PowerShell]

Get-WindowsCapability -Name RSAT* -Online | Add-WindowsCapability -Online

Install Vim (System Wide) [PowerShell]

mkdir vim-install; cd vim-install; $ProgressPreference = 'SilentlyContinue'; Invoke-Webrequest -UseBasicParsing https://github.com/vim/vim-win32-installer/releases/download/v9.1.0/gvim_9.1.0_x86_signed.zip -o gvim.zip; Expand-Archive -Path gvim.zip -DestinationPath .; cp .\vim\vim91\vim.exe C:\windows\system32\vim.exe

Install Vim (User Only) [PowerShell]

mkdir vim-install; cd vim-install; $ProgressPreference = 'SilentlyContinue'; Invoke-Webrequest -UseBasicParsing https://github.com/vim/vim-win32-installer/releases/download/v9.1.0/gvim_9.1.0_x86_signed.zip -o gvim.zip; Expand-Archive -Path gvim.zip -DestinationPath .; cp .\vim\vim91\vim.exe $env:LOCALAPPDATA\Microsoft\WindowsApps\vim.exe

Install Git [PowerShell]

winget install --id Git.Git -e --source winget --scope user

Services

List Services [PowerShell]

Get-Service

Set Auto Start [PowerShell]

Set-Service -Name {servicename} -StartupType Automatic

Manage Service [PowerShell]

Start-Service {servicename}
Stop-Service {servicename}
Restart-Service {servicename}

Networking (Advanced)

Remove Default Gateway [PowerShell]

Remove-NetRoute -InterfaceAlias "{get this name from Get-NetAdapter}" -DestinationPrefix 0.0.0.0/0

Set IP Address [PowerShell]

Get-NetAdapter -Name '{get this name from Get-NetAdapter}' | New-NetIPAddress -IPAddress {newIP} -PrefixLength {cidr}

Allow Ping [CMD]

netsh advfirewall firewall add rule name="ICMP Allow incoming V4 echo request" protocol=icmpv4:8,any dir=in action=allow

Show WiFi Passwords [CMD]

for /f "skip=9 tokens=1,2 delims=:" %i in ('netsh wlan show profiles') do @if "%j" NEQ "" (echo SSID: %j & netsh wlan show profiles %j key=clear | findstr "Key Content")

Disable WiFi Scanning [CMD]

netsh wlan set autoconfig enabled=no interface="Wi-Fi"

Enable WiFi Scanning [CMD]

netsh wlan set autoconfig enabled=yes interface="Wi-Fi"

Storage & Files

Resize VHD [PowerShell]

resize-vhd -path "f:\Shares\profiledisks" -Sizebytes 30GB

Robocopy Migration [CMD]

robocopy "C:\users\awesome.guy" "D:\users\awesome.guy" /E /COPYALL /zb /r:10 /w:10 /tee /unilog+:"D:\robocopylog.txt"

DNS & Group Policy

Add DNS Suffix [PowerShell]

Set-DnsClientGlobalSetting -SuffixSearchList @("corp.mariocorp.com")

Force GP Update [CMD]

gpupdate.exe /force

Misc

Firefox Profile Manager [CMD]

"C:\Program Files\Mozilla Firefox\firefox.exe" --ProfileManager

Ping with Timestamp [PowerShell]

ping google.com -t | % { "$(Get-Date -Format 'yyyy-MM-dd HH:mm:ss') $_" }

Open a Command Prompt as SYSTEM

PSExec Method (Requires installing PSExec) [PowerShell]

The oneliner below installs psexec for you and uses it to open the SYSTEM cmd. Needs an elevated powershell prompt.

Invoke-WebRequest -Uri "https://download.sysinternals.com/files/PSTools.zip" -OutFile "$env:TEMP\PSTools.zip"; Expand-Archive "$env:TEMP\PSTools.zip" -DestinationPath "$env:TEMP\PSTools" -Force; & "$env:TEMP\PSTools\PsExec64.exe" -i -s -d cmd.exe /k "title NT AUTHORITY\SYSTEM - whoami && whoami"

If it has been run before, you can open the prompt with just:

;& "$env:TEMP\PSTools\PsExec64.exe" -i -s -d cmd.exe

UAC Method (May trip antivirus but does not require external tools)

This method uses the UAC secure desktop (via On-Screen Keyboard trick) to launch cmd.exe as NT AUTHORITY\SYSTEM without third-party tools.

Setup (run once as Administrator)

reg add "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\osk.exe" /v Debugger /t REG_SZ /d "cmd.exe" /f

Trigger SYSTEM cmd

1. Open any program as Administrator so the UAC prompt appears.
2. While the UAC dialog is visible (dark background), press Win + U to open Ease of Access Center.
3. Click On-Screen Keyboard.
4. A Command Prompt running as SYSTEM should appear on the secure desktop.

Cleanup (run as Administrator when done)

reg delete "HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options\osk.exe" /f

Note: This works because the secure desktop runs with SYSTEM privileges. The cmd window will appear only while the UAC prompt is active.