shares | Powershell for Windows

06.05.2009

Поиск в локальной сети открытых ресурсов и экспорт в файл *.csv

Filed under: PowerShell — Метки: Поиск, Поиск в локальной сети, Поиск в локальной сети открытых ресурсов, Поиск в локальной сети шары, локальной сети, локальные сети, открытые ресурсы, поиск шары, find, Lan, Network, скрипт, шары, Power Shell, PowerShell, scan, scaning, script, seach, seach share, seach shares, share, shares, Windows — Yamshikov Pavel @ 12:44 дп

Работа скрипта:

Проверяем путь к папке и если нужно создаем.
Создаем список компьютеров доменной сети
Циклом перебираем список компьютеров доменной сети
Проверяем «жив» ли компьютер
Проверяем есть ли доступ к компьютеру
Получаем список «шар» (без системных «шар»)
Проверяем есть ли доступ к «шаре»
Получаем данные о «шаре» (имя, путь, разрешения доступа)
Экспорт данных в файл *.csv

Скрипт FindLanShares.ps1

$Data = get-date -uformat "%d.%m.%Y_%H.%M.%S" $LogPath = "C:\Monitoring\LOG\$Data" $AllComputerInfo = @();$AllNOPermissions = @();$AllServerRPCUnavailable = @();$AllNoAccess = @() #region Check Path Export LOGS If((Test-Path ($LogPath)) -eq $False) {New-Item ($LogPath) -Type Directory} #endregion Check Path Export LOGS #region We Write The Received Results in Log. $LogADComputerInfo = "$LogPath\Computer_Information.csv" $LogNOPermissions = "$LogPath\NO_Permissions_Share.csv" $LogRPCUnavailable = "$LogPath\Server_RPC_Unavailable.csv" $LogNoAccess = "$LogPath\No_Access_Computer.csv" #endregion We Write The Received Results in Log. #region Function function Ping ($Name){ $ping = new-object System.Net.NetworkInformation.Ping if ($ping.send($Name).Status -eq "Success" ) { $True } else { $False } trap {Write-Verbose "Ошибка пинга"; $False; continue} } #endregion Function #region Collection of the Information on the Computer #region The List Active Directory Computers $LC = Get-QADComputer -ErrorAction SilentlyContinue -SizeLimit 0 | Sort-object Name | foreach {$_.name -replace " *",""} foreach ($strComputer in $LC){ #region Life check Computer $Alive="";$Comp = "";$NoAccess = "";$ServerRPCUnavailable = "";$shares ="" $Alive = Ping $strComputer if ($Alive -eq "True"){Write-Output "Scanning $strComputer" #region Computer Information #region Access check to the computer Trap {"WMI Error Access check $strComputer"; Continue} $Comp = Get-WmiObject -Class "Win32_computersystem" -ComputerName $strComputer -ErrorAction SilentlyContinue if ($Comp -eq ""){"NoAccess $strComputer";$AllNoAccess += $NoAccess | % {$_ | select @{e={$strComputer};n='Computer'}}} if ($Comp -eq $Null){"ServerRPCUnavailable $strComputer";$AllServerRPCUnavailable += $ServerRPCUnavailable | % {$_ | select @{e={$strComputer};n='Computer'}}} if ($Comp.Caption.Length -gt 1) { #region Share Information Trap {"WMI Error Share Name $strComputer"; Continue} $shares = Get-WmiObject Win32_Share -ComputerName $strComputer -filter 'type=0' -ErrorAction SilentlyContinue foreach($share in $shares) { $shareSec ="";$sd = "";$NOPermissions = @();$ShareInfo = @() Trap {"WMI Error Share Security Setting $strComputer";Continue} $shareSec = Get-WmiObject Win32_LogicalShareSecuritySetting -ComputerName $strComputer -filter "name='$($share.name)'" -ErrorAction SilentlyContinue if ($shareSec) {$sd = $sharesec.GetSecurityDescriptor();$DACL = $SD.Descriptor #region There are No Permissions if ($DACL.DACL -eq $Null){ $NOPermissions += $DACL |% { $_ | select @{e={$strComputer};n='Computer'}, @{e={$share.name};n='ShareName'}, @{e={$DACL.DACL};n='DACL'} } foreach($NOPermission in $NOPermissions){if ($NOPermission.DACL -eq $Null){$NOPermission.DACL = "NO Permissions"}} $AllNOPermissions += $NOPermissions } #endregion There are No Permissions $ShareInfo += $DACL.DACL |% { $_ | select @{e={$comp.Name};n='Computer'}, @{e={$comp.UserName};n='Login'}, @{e={$share.name};n='ShareName'}, @{e={$share.Path};n='PathShare'}, AccessMask, @{e={$_.trustee.Name};n='User'}, @{e={$_.trustee.Domain};n='Domain'}, @{e={$_.trustee.SIDString};n='SID'} } foreach($Info in $ShareInfo){ if ($Info.Login -eq $null){$Info.Login = "Emply"} if ($Info.AccessMask -eq "1179817"){$Info.AccessMask = "ReadAndExecute"} if ($Info.AccessMask -eq "1245631"){$Info.AccessMask = "Modify"} if ($Info.AccessMask -eq "2032127"){$Info.AccessMask = "FullControl"} if ($Info.User -eq $Null){$Info.User = "DEAD"} if ($Info.Domain -eq $Null){$Info.Domain = "Emply"} } $AllComputerInfo += $ShareInfo } } #endregion Share Information } #endregion Access check to the computer #endregion Computer Information } #endregion Life check Computer } #endregion The List Active Directory Computers #endregion Collection of the Information on the Computer #region Save to File $AllComputerInfo | export-csv -Encoding OEM -Path $LogADComputerInfo -NoTypeInformation $AllNOPermissions | export-csv -Encoding OEM -Path $LogNOPermissions -NoTypeInformation $AllServerRPCUnavailable | export-csv -Encoding OEM -Path $LogRPCUnavailable -NoTypeInformation $AllNoAccess | export-csv -Encoding OEM -Path $LogNoAccess -NoTypeInformation #endregion Save to File