# Group Enumeration

### **Group Enumeration**

**Get all the groups in the current domain**

{% code overflow="wrap" %}

```powershell
Get-DomainGroup | select Name
Get-DomainGroup -Domain <targetdomain>
Get-ADGroup -Filter * | select Name
Get-ADGroup -Filter * -Properties *
```

{% endcode %}

**Get all groups containing the word "admin" in group name**&#x20;

{% code overflow="wrap" %}

```powershell
Get-DomainGroup *admin*
Get-ADGroup -Filter 'Name -like "*admin*"' | select Name 
```

{% endcode %}

**Get all the members of the Domain Admins group**

{% code overflow="wrap" %}

```powershell
Get-DomainGroupMember -Identity "Domain Admins" -Recurse
Get-ADGroupMember -Identity "Domain Admins" -Recursive 
```

{% endcode %}

**Get the group membership for a user:**

{% code overflow="wrap" %}

```powershell
Get-DomainGroup -UserName "student1"
Get-ADPrincipalGroupMembership -Identity student1 
```

{% endcode %}

**List all the local groups on a machine (needs administrator privs on non-dc machines)** :thumbsup:

{% code overflow="wrap" %}

```powershell
Get-NetLocalGroup -ComputerName dcorp-dc
```

{% endcode %}

**Get members of the local group "Administrators" on a machine (needs administrator privs on non-dc machines)**&#x20;

{% code overflow="wrap" %}

```powershell
Get-NetLocalGroupMember -ComputerName dcorp-dc -GroupName Administrators
```

{% endcode %}