3️⃣3 - PowerShell for PT
Topics
What is a PowerShell?
PowerShell and IDE
Powershell.exe and IDE
PowerShell is typically available in two main executable forms: powershell.exe and powershell_ise.exe. Each serves a different purpose in the PowerShell ecosystem.
powershell.exe:
This is the standard PowerShell command-line interface (CLI) executable. When you open a regular PowerShell console or run PowerShell commands from the command prompt, you are interacting with
powershell.exe.You can use
powershell.exeto execute individual commands, run scripts, and perform various administrative tasks using PowerShell.
Example usage in the command prompt:
arduinoCopy codepowershell.exe -Command "Get-Process"powershell_ise.exe:
This is the executable for the PowerShell Integrated Scripting Environment (ISE). The ISE is an interactive development environment for PowerShell scripting. It provides a graphical user interface (GUI) for writing, testing, and debugging PowerShell scripts.
The ISE includes features such as a script editor, a command pane, and a script output pane, making it easier for users to work with PowerShell scripts and functions.
Example usage in the command prompt:
Copy codepowershell_ise.exeWhen you run the
powershell_ise.execommand, it opens the PowerShell ISE window.
In summary, powershell.exe is the standard command-line interface for executing PowerShell commands, while powershell_ise.exe is used to open the PowerShell Integrated Scripting Environment for script development and testing in a more interactive and visual manner. Users often choose between these executables based on their specific needs and preferences for working with PowerShell.
PowerShell Commands
PowerShell Commands
In PowerShell, there are several types of commands, each serving a specific purpose and role in scripting and automation. Here's an overview of PowerShell cmdlets, functions, scripts, and native commands:
Cmdlets (Commandlets):
Cmdlets are lightweight commands in PowerShell. They are .NET classes with methods that perform specific tasks. Cmdlets follow a Verb-Noun naming convention (e.g.,
Get-Process,New-Item).Cmdlets are the primary building blocks for PowerShell commands, and they are designed to be easily discoverable and consistent.
Functions:
Functions in PowerShell allow you to group a series of PowerShell statements into a reusable unit. You can define functions to perform specific tasks, and they can accept parameters and return values.
Functions are useful for modularizing your code and avoiding code duplication. They can be defined within scripts or loaded from modules.
Example of a simple function:
powershellCopy codefunction Get-Square { param ( [int]$Number ) $Square = $Number * $Number return $Square }Usage:
powershellCopy codeGet-Square -Number 5Scripts:
PowerShell scripts are sequences of PowerShell commands saved in a text file with a
.ps1extension. Scripts can contain a series of cmdlets, functions, logic, and control flow statements.Running a script is a way to execute a sequence of PowerShell commands as a single unit.
Example script (
MyScript.ps1):powershellCopy code# MyScript.ps1 Get-ProcessRunning the script:
powershellCopy code.\MyScript.ps1Native Commands (External Commands):
PowerShell can also interact with external commands, executables, or scripts written in other languages (e.g., batch files, executable programs). These are referred to as native commands.
You can call native commands using the
&operator or theInvoke-Expressioncmdlet.
Example of calling a native command:
powershellCopy code& "C:\Path\To\Your\Executable.exe" -Parameter1 Value1Keep in mind that while native commands can be called from PowerShell, the preferred and more PowerShell-centric approach is to use cmdlets and functions whenever possible for better consistency and integration with the PowerShell environment.
Cmdlet
❗ Disclaimer
Never use tools and techniques on real IP addresses, hosts or networks without proper authorization!
Last updated
