// Learn
// Sandbox
// Reference
PS>_
EXTREME SHELL MASTERY
PowerShell pipelines, CMD forensics, BAT automation wizardry, remote execution, registry hacking, scheduled tasks, and the commands that make sysadmins look like wizards.
SCRIPT
Output
stdout://
SHELL QUICK REFERENCE
// PowerShell · CMD · BAT — Extreme Commands
| Command | Shell | Level | Purpose |
|---|---|---|---|
Invoke-WebRequest | PS | Rare | Full HTTP client — GET/POST/headers/sessions |
Get-WmiObject | PS | Epic | Query hardware, OS, processes via WMI |
Invoke-Command | PS | Legend | Run commands on remote machines via WinRM |
Start-Job / Receive-Job | PS | Legend | Background jobs — parallel execution |
Where-Object / ForEach-Object | PS | Rare | Pipeline filtering and transformation |
Select-Object / Sort-Object | PS | Rare | Shape and sort pipeline objects |
Export-Csv / Import-Csv | PS | Rare | Read/write structured CSV data |
ConvertTo-Json / ConvertFrom-Json | PS | Rare | JSON serialization in pipeline |
Register-ScheduledTask | PS | Epic | Create Windows scheduled tasks |
New-ItemProperty (Registry) | PS | Legend | Read/write Windows registry |
Get-EventLog / Get-WinEvent | PS | Epic | Query Windows event logs |
Start-Transcript | PS | Rare | Record full session to log file |
Measure-Object | PS | Rare | Sum, average, min, max of pipeline values |
Set-ExecutionPolicy | PS | Rare | Control script execution security policy |
$ErrorActionPreference | PS | Epic | Control error handling behavior globally |
Try/Catch/Finally | PS | Rare | Structured exception handling |
for /f "tokens=..." | CMD | Legend | Parse text/command output line by line |
wmic | CMD | Epic | WMI from CMD — query system info |
netsh | CMD | Legend | Full network config — firewall, WiFi, interfaces |
schtasks /create | CMD | Epic | Schedule tasks from CMD |
reg add / reg query | CMD | Legend | Registry operations from CMD |
tasklist /svc | CMD | Rare | List processes with their services |
findstr /r /s | CMD | Epic | Regex search across files recursively |
robocopy | CMD | Legend | Robust file copy with retry, mirror, exclude |
cipher /e /d | CMD | Master | EFS file encryption/decryption |
call :label / goto | BAT | Rare | Subroutines and flow control in batch |
setlocal enabledelayedexpansion | BAT | Legend | Dynamic variables inside loops |
for /l %%i in (1,1,10) | BAT | Epic | Numeric counter loops in batch |
%~dp0 / %~nx0 | BAT | Legend | Script path magic variables |
errorlevel | BAT | Epic | Exit code checking and branching |
xcopy /e /h /i | ALL | Rare | Deep copy with hidden files and folders |
Foreach-Object -Parallel | PS | Master | True parallel execution (PS 7+) |
diskpart | CMD | Master | Disk partition management scripted |
winrm quickconfig | CMD | Master | Enable remote PowerShell management |
icacls | ALL | Legend | Advanced NTFS permission management |
bcdedit | CMD | Master | Boot configuration data editor |
Get-Acl / Set-Acl | PS | Legend | Read/write file and registry permissions |
Test-NetConnection | PS | Rare | Advanced network connectivity & port tests |
netstat -ano | ALL | Rare | All connections with owning process IDs |
sc config / sc create | CMD | Legend | Create and configure Windows services |
Compress-Archive / Expand-Archive | PS | Rare | Zip/unzip without external tools |