{"id":197,"date":"2025-10-18T13:05:54","date_gmt":"2025-10-18T11:05:54","guid":{"rendered":"https:\/\/techbygiusi.com\/?p=197"},"modified":"2025-11-15T13:54:29","modified_gmt":"2025-11-15T12:54:29","slug":"test","status":"publish","type":"post","link":"https:\/\/techbygiusi.com\/index.php\/command\/test\/","title":{"rendered":"Windows Administration Cheat Sheet"},"content":{"rendered":"\n<h5 class=\"wp-block-heading\">Legend<\/h5>\n\n\n\n<ul class=\"wp-block-list\">\n<li><a href=\"#System-Information-&amp;-Diagnostics\" data-type=\"internal\" data-id=\"#System-Information-&amp;-Diagnostics\">System Information &amp; Diagnostics<\/a><\/li>\n\n\n\n<li><a href=\"#Network-Troubleshooting\" data-type=\"internal\" data-id=\"#Network-Troubleshooting\">Network Troubleshooting<\/a><\/li>\n\n\n\n<li><a href=\"#Process-&amp;-Service-Management\" data-type=\"internal\" data-id=\"#Process-&amp;-Service-Management\">Process &amp; Service Management<\/a><\/li>\n\n\n\n<li><a href=\"#File-System-&amp;-Disk\" data-type=\"internal\" data-id=\"#File-System-&amp;-Disk\">File System &amp; Disk<\/a><\/li>\n\n\n\n<li><a href=\"#User,-Group-&amp;-Permission-Management\" data-type=\"internal\" data-id=\"#User,-Group-&amp;-Permission-Management\">User, Group &amp; Permission Management<\/a><\/li>\n\n\n\n<li><a href=\"#Firewall-&amp;-Security-Management\" data-type=\"internal\" data-id=\"#Firewall-&amp;-Security-Management\">Firewall &amp; Security Management<\/a><\/li>\n\n\n\n<li><a href=\"#Group-Policy-Management\" data-type=\"internal\" data-id=\"#Group-Policy-Management\">Group Policy Management<\/a><\/li>\n\n\n\n<li><a href=\"#System-Maintenance\" data-type=\"internal\" data-id=\"#System-Maintenance\">System Maintenance<\/a><\/li>\n\n\n\n<li><a href=\"#PowerShell-Essentials\" data-type=\"internal\" data-id=\"#PowerShell-Essentials\">PowerShell Essentials<\/a><\/li>\n\n\n\n<li><a href=\"#Quick-Administrative-Shortcuts\" data-type=\"internal\" data-id=\"#Quick-Administrative-Shortcuts\">Quick Administrative Shortcuts<\/a><\/li>\n<\/ul>\n\n\n\n<h5 class=\"wp-block-heading\" id=\"System-Information-&amp;-Diagnostics\">System Information &amp; Diagnostics<\/h5>\n\n\n\n<p>View full system info<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>systeminfo<\/code><\/pre>\n\n\n\n<p>View hostname<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>hostname<\/code><\/pre>\n\n\n\n<p>Check OS version<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>ver<\/code><\/pre>\n\n\n\n<p>Show current user<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>whoami<\/code><\/pre>\n\n\n\n<p>List all users<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>net user<\/code><\/pre>\n\n\n\n<p>Display environment variables<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>set<\/code><\/pre>\n\n\n\n<p>Check uptime<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>net statistics workstation<\/code><\/pre>\n\n\n\n<p>Show BIOS info<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>wmic bios get serialnumber,version<\/code><\/pre>\n\n\n\n<p>Check hardware summary<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>wmic cpu get name , wmic memorychip get capacity<\/code><\/pre>\n\n\n\n<p>Check disk usage<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>wmic logicaldisk get size,freespace,caption<\/code><\/pre>\n\n\n\n<p>Get detailed system info (PowerShell)<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>Get-ComputerInfo<\/code><\/pre>\n\n\n\n<p>Check PowerShell version<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>$PSVersionTable.PSVersion<\/code><\/pre>\n\n\n\n<div style=\"height:100px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h5 class=\"wp-block-heading\" id=\"Network-Troubleshooting\">Network Troubleshooting<\/h5>\n\n\n\n<p>View IP configuration<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>ipconfig \/all<\/code><\/pre>\n\n\n\n<p>Renew DHCP lease<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>ipconfig \/release<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>ipconfig \/renew<\/code><\/pre>\n\n\n\n<p>Flush DNS cache<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>ipconfig \/flushdns<\/code><\/pre>\n\n\n\n<p>Display routing table<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>route print<\/code><\/pre>\n\n\n\n<p>Show ARP cache<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>arp -a<\/code><\/pre>\n\n\n\n<p>Test connectivity<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>ping &lt;hostname&gt;<\/code><\/pre>\n\n\n\n<p>Test name resolution<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>nslookup &lt;hostname&gt;<\/code><\/pre>\n\n\n\n<p>Trace network path<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>tracert &lt;hostname&gt;<\/code><\/pre>\n\n\n\n<p>Check open ports<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>netstat -an<\/code><\/pre>\n\n\n\n<p>Show connections with process<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>netstat -ab<\/code><\/pre>\n\n\n\n<p>List interfaces<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>netsh interface show interface<\/code><\/pre>\n\n\n\n<p>Reset network stack<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>netsh int ip reset <\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>netsh winsock reset<\/code><\/pre>\n\n\n\n<p>Get MAC address<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>getmac<\/code><\/pre>\n\n\n\n<p>Quick test (PowerShell)<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>Test-NetConnection &lt;host&gt; -Port &lt;port&gt;<\/code><\/pre>\n\n\n\n<div style=\"height:100px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h5 class=\"wp-block-heading\" id=\"Process-&amp;-Service-Management\">Process &amp; Service Management<\/h5>\n\n\n\n<p>List running tasks<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>tasklist<\/code><\/pre>\n\n\n\n<p>Kill a process<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>taskkill \/PID &lt;id> \/F<\/code><\/pre>\n\n\n\n<p>View services<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>net start<\/code><\/pre>\n\n\n\n<p>Start\/stop service<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>net start &lt;svc&gt;<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code> net stop &lt;svc&gt;<\/code><\/pre>\n\n\n\n<p>Manage services (PowerShell)<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>Get-Service<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>Start-Service<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>Stop-Service<\/code><\/pre>\n\n\n\n<p>Process details<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>Get-Process<\/code><\/pre>\n\n\n\n<p>Kill process (PowerShell)<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>Stop-Process -Name notepad<\/code><\/pre>\n\n\n\n<div style=\"height:100px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h5 class=\"wp-block-heading\" id=\"File-System-&amp;-Disk\">File System &amp; Disk<\/h5>\n\n\n\n<p>List directory<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>dir<\/code><\/pre>\n\n\n\n<p>Change directory<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>cd &lt;path&gt;<\/code><\/pre>\n\n\n\n<p>Create folder<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>mkdir &lt;name&gt;<\/code><\/pre>\n\n\n\n<p>Delete folder\/file<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>rmdir &lt;name&gt;<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code> del &lt;file&gt;<\/code><\/pre>\n\n\n\n<p>Copy\/move files<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>copy &lt;src&gt; &lt;dst&gt;<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>move &lt;src&gt; &lt;dst&gt;<\/code><\/pre>\n\n\n\n<p>Compare files<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>fc &lt;file1&gt; &lt;file2&gt;<\/code><\/pre>\n\n\n\n<p>Check disk errors<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>chkdsk &lt;drive&gt;: \/f<\/code><\/pre>\n\n\n\n<p>Show disk layout<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>diskpart <\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>list disk<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>list volume<\/code><\/pre>\n\n\n\n<p>Map network drive<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>net use Z: \\\\server\\share \/user:domain\\user<\/code><\/pre>\n\n\n\n<div style=\"height:100px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h5 class=\"wp-block-heading\" id=\"User,-Group-&amp;-Permission-Management\">User, Group &amp; Permission Management<\/h5>\n\n\n\n<p>List local users<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>net user<\/code><\/pre>\n\n\n\n<p>View user details<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>net user &lt;username&gt;<\/code><\/pre>\n\n\n\n<p>Create\/delete user<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>net user &lt;user&gt; &lt;pw&gt; \/add<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>net user &lt;user&gt; &lt;pw&gt; \/delete<\/code><\/pre>\n\n\n\n<p>Add user to group<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>net localgroup &lt;group&gt; &lt;user&gt; \/add<\/code><\/pre>\n\n\n\n<p>List groups<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>net localgroup<\/code><\/pre>\n\n\n\n<p>Change password<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>net user &lt;username&gt; *<\/code><\/pre>\n\n\n\n<p>View sessions<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>query user<\/code><\/pre>\n\n\n\n<p>Lock workstation<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>rundll32.exe user32.dll,LockWorkStation<\/code><\/pre>\n\n\n\n<div style=\"height:100px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h5 class=\"wp-block-heading\" id=\"Firewall-&amp;-Security-Management\">Firewall &amp; Security Management<\/h5>\n\n\n\n<p>Check firewall state<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>netsh advfirewall show allprofiles<\/code><\/pre>\n\n\n\n<p>Disable\/enable firewall<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>netsh advfirewall set allprofiles state off<\/code><\/pre>\n\n\n\n<pre class=\"wp-block-code\"><code>netsh advfirewall set allprofiles state on<\/code><\/pre>\n\n\n\n<p>Allow app through firewall<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>netsh advfirewall firewall add rule name=\"App\" dir=in action=allow program=\"C:\\path\\app.exe\"<\/code><\/pre>\n\n\n\n<p>Enable firewall logging<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>netsh advfirewall set allprofiles logging filename %systemroot%\\system32\\LogFiles\\Firewall\\pfirewall.log<\/code><\/pre>\n\n\n\n<p>Windows Defender status<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>sc query Windefend or Get-MpComputerStatus<\/code><\/pre>\n\n\n\n<p>Check RDP status<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>query session \/ qwinsta<\/code><\/pre>\n\n\n\n<p>Enable RDP (PowerShell)<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>Set-ItemProperty -Path 'HKLM:\\System\\CurrentControlSet\\Control\\Terminal Server' -Name\n\"fDenyTSConnections\" -Value 0<\/code><\/pre>\n\n\n\n<div style=\"height:100px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h5 class=\"wp-block-heading\" id=\"Group-Policy-Management\">Group Policy Management<\/h5>\n\n\n\n<p>Display effective Group Policy<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>gpresult \/r<\/code><\/pre>\n\n\n\n<p>Generate detailed HTML report<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>gpresult \/h C:\\gpresult.html<\/code><\/pre>\n\n\n\n<p>Force Group Policy update<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>gpupdate \/force<\/code><\/pre>\n\n\n\n<p>Update only user policy<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>gpupdate \/target:user \/force<\/code><\/pre>\n\n\n\n<p>Update only computer policy<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>gpupdate \/target:computer \/force<\/code><\/pre>\n\n\n\n<p>Force synchronous update (next logon\/reboot)<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>gpupdate \/sync<\/code><\/pre>\n\n\n\n<p>Force update remotely (PowerShell)<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>Invoke-GPUpdate -Computer &lt;name&gt; -Force<\/code><\/pre>\n\n\n\n<p>Check last applied GPO time<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>Get-GPResultantSetOfPolicy -ReportType Html -Path \"C:\\GPO_Report.html\"<\/code><\/pre>\n\n\n\n<p>Export GPO settings (PowerShell)<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>Backup-GPO -Name \"&lt;GPOName&gt;\" -Path \"C:\\GPOBackup\"<\/code><\/pre>\n\n\n\n<p>List all GPOs (PowerShell)<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>Get-GPO -All<\/code><\/pre>\n\n\n\n<div style=\"height:100px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h5 class=\"wp-block-heading\" id=\"System-Maintenance\">System Maintenance<\/h5>\n\n\n\n<p>Check\/repair system files<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>sfc \/scannow<\/code><\/pre>\n\n\n\n<p>Check component store<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>DISM \/Online \/Cleanup-Image \/ScanHealth<\/code><\/pre>\n\n\n\n<p>Repair component store<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>DISM \/Online \/Cleanup-Image \/RestoreHealth<\/code><\/pre>\n\n\n\n<p>Reboot\/shutdown<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>shutdown \/r \/t 0 \/ shutdown \/s \/t 0<\/code><\/pre>\n\n\n\n<p>Schedule reboot<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>shutdown \/r \/t 3600<\/code><\/pre>\n\n\n\n<p>List installed updates<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>wmic qfe list brief<\/code><\/pre>\n\n\n\n<p>Uninstall update<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>wusa \/uninstall \/kb:XXXXXXX<\/code><\/pre>\n\n\n\n<p>List installed software<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>wmic product get name,version<\/code><\/pre>\n\n\n\n<p>Check startup programs<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>wmic startup get caption,command<\/code><\/pre>\n\n\n\n<p>Clear temp files<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>del \/q\/f\/s %TEMP%\\*<\/code><\/pre>\n\n\n\n<div style=\"height:100px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h5 class=\"wp-block-heading\" id=\"PowerShell-Essentials\">PowerShell Essentials<\/h5>\n\n\n\n<p>List cmdlets<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>Get-Command<\/code><\/pre>\n\n\n\n<p>Find cmdlet<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>Get-Command *service*<\/code><\/pre>\n\n\n\n<p>Get help<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>Get-Help Get-Service -Full<\/code><\/pre>\n\n\n\n<p>Get event logs<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>Get-EventLog -LogName System -Newest 20<\/code><\/pre>\n\n\n\n<p>Remote session<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>Enter-PSSession -ComputerName &lt;host&gt;<\/code><\/pre>\n\n\n\n<p>Run remote command<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>Invoke-Command -ComputerName &lt;host&gt; -ScriptBlock { Get-Service }<\/code><\/pre>\n\n\n\n<div style=\"height:100px\" aria-hidden=\"true\" class=\"wp-block-spacer\"><\/div>\n\n\n\n<h5 class=\"wp-block-heading\" id=\"Quick-Administrative-Shortcuts\">Quick Administrative Shortcuts<\/h5>\n\n\n\n<p>Services<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>services.msc<\/code><\/pre>\n\n\n\n<p>Event Viewer<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>eventvwr.msc<\/code><\/pre>\n\n\n\n<p>Group Policy Editor<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>gpedit.msc<\/code><\/pre>\n\n\n\n<p>Task Scheduler<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>taskschd.msc<\/code><\/pre>\n\n\n\n<p>Performance Monitor<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>perfmon<\/code><\/pre>\n\n\n\n<p>System Configuration<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>msconfig<\/code><\/pre>\n\n\n\n<p>Registry Editor<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>regedit<\/code><\/pre>\n\n\n\n<p>Resource Monitor<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>resmon<\/code><\/pre>\n\n\n\n<p>Control Panel<\/p>\n\n\n\n<pre class=\"wp-block-code\"><code>control<\/code><\/pre>\n","protected":false},"excerpt":{"rendered":"<p>Legend System Information &amp; Diagnostics View full system info View hostname Check OS version Show current user List all users Display environment variables Check uptime Show BIOS info Check hardware summary Check disk usage Get detailed system info (PowerShell) Check PowerShell version Network Troubleshooting View IP configuration Renew DHCP lease Flush DNS cache Display routing [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[16],"tags":[19,11],"class_list":["post-197","post","type-post","status-publish","format-standard","hentry","category-command","tag-commands","tag-windows"],"_links":{"self":[{"href":"https:\/\/techbygiusi.com\/index.php\/wp-json\/wp\/v2\/posts\/197","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/techbygiusi.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/techbygiusi.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/techbygiusi.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/techbygiusi.com\/index.php\/wp-json\/wp\/v2\/comments?post=197"}],"version-history":[{"count":7,"href":"https:\/\/techbygiusi.com\/index.php\/wp-json\/wp\/v2\/posts\/197\/revisions"}],"predecessor-version":[{"id":240,"href":"https:\/\/techbygiusi.com\/index.php\/wp-json\/wp\/v2\/posts\/197\/revisions\/240"}],"wp:attachment":[{"href":"https:\/\/techbygiusi.com\/index.php\/wp-json\/wp\/v2\/media?parent=197"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/techbygiusi.com\/index.php\/wp-json\/wp\/v2\/categories?post=197"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/techbygiusi.com\/index.php\/wp-json\/wp\/v2\/tags?post=197"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}