PowerShell for Pentesters Part 4: Modules with PowerShell
Introduction
The more we advance in our lab series, the more we notice the power of PowerShell. And it will only become more noticeable.
In this lab we will discover how to manipulate modules with PowerShell. This is a very interesting and important part of learning PowerShell for us, because it will help us a lot in automating many tasks and operations.
What should you learn next?
Modules with PowerShell
As we have seen in the previous articles, modules represent a very powerful concept on PowerShell. Now we will not learn how to use them (we saw this before), but how to create and exploit them for our pentesting purposes, especially for automating routine tasks.
First, let’s remember the definition of a module. Microsoft describe modules as the following:
“A module is a package that contains PowerShell commands, such as cmdlets, providers, functions, workflows, variables, and aliases.
“People who write commands can use modules to organize their commands and share them with others. People who receive modules can add the commands in the modules to their PowerShell sessions and use them just like the built-in commands.” (Source)
We can get the list of available modules by using the Get-Module command:
Figure 1: Get the list of available modules on PowerShell
The Get-Module command helps us get the modules that have been imported into the current session. And in our example, we used this command with the -ListAvailable option to retrieve the modules that are installed on the computer and can be imported in our session. Adding the option -All makes us able to get all exported files for all available modules in our current session.
We can also import a module very simply by using the Import-Module command:
Figure 2: Import module on PowerShell
And then we can remove it using the Remove-Module command like the following:
Figure 3: Remove module on PowerShell
Writing Modules With PowerShell
Now let’s talk about how to create modules with PowerShell.
The modules on PowerShell have the “.psm1” extension.
We’ll start by creating a sample module. First, we will place a function in a psm1 file to make our module.
There is nothing special in this kind of file (other than the file extension), so we can use a normal PowerShell script containing our functions and rename it to make the psm1 file. Simple, isn’t it?
Here’s a simple function that we will use.
This function simply tries to see if a file exists:
Figure 4: Test-File
And there is an important note: We have to add a module manifest to call it really a module.
Manifests simply adds metadata about the concerned module. It includes information like:
- Author information
- Versioning
- Auto-load of the module
The module manifest is just a hash table saved as psd1 file, which will be loaded when we will import our data.
The New-ModuleManifest cmdlet will help us by creating the manifest for us.
So let’s generate our first manifest:
Figure 5: Creation of manifest on PowerShell
And here’s what our generated manifest will look like:
One of the most interesting properties in the manifest is the FunctionsToExport property. It has a default value of *, exporting all functions, but we can also choose specific functions using the following syntax: FunctionsToExport = "GetFunction".
And finally, let’s talk about RootModule. The root module parameter simply indicates what PowerShell module file should be run.
Don’t forget to put all files in the same folder, like so:
Modules
│
└───if_exist
If_exist.psd1
If_exist.psm1
And now let’s import this:
The Import-Module command will automatically find our psm1 file in this case.
That’s it.
Congratulations, now you now how to manipulate modules with PowerShell. And you will see, it will be very very, very, useful!
Conclusion
Modules will represent a very useful concept that will help us a lot.
In the next articles, we will begin exploiting real use cases with PowerShell and begin to talk about remoting with PowerShell.
Let’s go to the next level. See you soon, my friends!
FREE role-guided training plans
Brace yourself: the best is coming!
- 12 pre-built training plans
- Employer-requested skills
- Personalized, hands-on training
In this Series
- PowerShell for Pentesters Part 4: Modules with PowerShell
- Intelligence-led pentesting and the evolution of Red Team operations
- Red Teaming: Taking advantage of Certify to attack AD networks
- How ethical hacking and pentesting is changing in 2022
- Ransomware penetration testing: Verifying your ransomware readiness
- Red Teaming: Main tools for wireless penetration tests
- Fundamentals of IoT firmware reverse engineering
- Red Teaming: Top tools and gadgets for physical assessments
- Red teaming: Initial access and foothold
- Top tools for red teaming
- What is penetration testing, anyway?
- Red Teaming: Persistence Techniques
- Red Teaming: Credential dumping techniques
- Top 6 bug bounty programs for cybersecurity professionals
- Tunneling and port forwarding tools used during red teaming assessments
- SigintOS: Signal Intelligence via a single graphical interface
- Top tools for mobile android assessments
- Top tools for mobile iOS assessments
- Red Team: C2 frameworks for pentesting
- Inside 1,602 pentests: Common vulnerabilities, findings and fixes
- Red teaming tutorial: Active directory pentesting approach and tools
- Red Team tutorial: A walkthrough on memory injection techniques
- Python for active defense: Monitoring
- Python for active defense: Network
- Python for active defense: Decoys
- How to write a port scanner in Python in 5 minutes: Example and walkthrough
- Using Python for MITRE ATT&CK and data encrypted for impact
- Explore Python for MITRE ATT&CK exfiltration and non-application layer protocol
- Explore Python for MITRE ATT&CK command-and-control
- Explore Python for MITRE ATT&CK email collection and clipboard data
- Explore Python for MITRE ATT&CK lateral movement and remote services
- Explore Python for MITRE ATT&CK account and directory discovery
- Explore Python for MITRE ATT&CK credential access and network sniffing
- Top 10 security tools for bug bounty hunters
- Kali Linux: Top 5 tools for password attacks
- Kali Linux: Top 5 tools for post exploitation
- Kali Linux: Top 5 tools for database security assessments
- Kali Linux: Top 5 tools for information gathering
- Kali Linux: Top 5 tools for sniffing and spoofing
- Kali Linux: Top 8 tools for wireless attacks
- Kali Linux: Top 5 tools for penetration testing reporting
- Kali Linux overview: 14 uses for digital forensics and pentesting
- Top 19 Kali Linux tools for vulnerability assessments
- Explore Python for MITRE ATT&CK persistence
- Explore Python for MITRE ATT&CK defense evasion
- Explore Python for MITRE ATT&CK privilege escalation
- Explore Python for MITRE ATT&CK initial access
- Top 18 tools for vulnerability exploitation in Kali Linux
- Explore Python for MITRE PRE-ATT&CK, network scanning and Scapy
- Kali Linux: Top 5 tools for social engineering
- Basic snort rules syntax and usage [updated 2021]
Get certified and advance your career
- Exam Pass Guarantee
- Live instruction
- CompTIA, ISACA, (ISC)², Cisco, Microsoft and more!
Penetration testing
Intelligence-led pentesting and the evolution of Red Team operations
Penetration testing
Red Teaming: Taking advantage of Certify to attack AD networks
Penetration testing
Penetration testing
Ransomware penetration testing: Verifying your ransomware readiness