1 / 16

PowerShell and WMI

Explore the world of PowerShell and WMI with Trevor Sullivan's engaging presentation. Learn about providers, namespaces, classes, properties, methods, and more. Discover how to leverage type accelerators and execute WMI cmdlets effectively. Get insights on WMI eventing and permanent WMI events, along with practical examples and best practices. Enhance your IT skills and troubleshooting abilities using WinRM to avoid DCOM/RPC issues. Dive into WMI exploration with SAPIEN WMI Explorer and PowerEvents. Join the session for a comprehensive guide and actionable insights. Thank you for your interest!

ajerry
Download Presentation

PowerShell and WMI

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. PowerShell and WMI Empowering admins and engineers worldwide.

  2. IT Administrators & Engineers • Security teams • IT Managers Who needs WMI? Presentation by Trevor Sullivan

  3. Why WMI? Presentation by Trevor Sullivan

  4. Providers • Namespaces • Classes • Instance Properties • Instance Methods • Static properties • Static methods • System classes • WMI qualifiers (metadata) WMI Architecture Presentation by Trevor Sullivan

  5. Select * from <EventClass> within <seconds> where <criteria> WMI Eventing Presentation by Trevor Sullivan

  6. WMI Tools Presentation by Trevor Sullivan

  7. What is a type accelerator? System.Management Namespace • [wmiclass] = ManagementClass • [wmi] = ManagementObject • [wmisearcher] = ManagementObjectSearcher WMI Type Accelerators Presentation by Trevor Sullivan

  8. Type Accelerator Examples Presentation by Trevor Sullivan

  9. Get-WmiObject • Register-WmiEvent • Get-EventSubscriber • Unregister-Event • Invoke-WmiMethod • (Get-WmiObject … …).MethodName(); • ([wmiclass]"class_name").MethodName(); • Remove-WmiObject • (Get-WmiObject … …) | % { $_.Delete() }; • Set-WmiInstance • [wmiclass]"win32_environment").CreateInstance(); WMI Cmdlets Presentation by Trevor Sullivan

  10. WMI Cmdlet Examples Presentation by Trevor Sullivan

  11. WMI Event Cmdlet Examples Presentation by Trevor Sullivan

  12. WMI Event Cmdlet Examples Presentation by Trevor Sullivan

  13. Permanent WMI Events Presentation by Trevor Sullivan

  14. Get-CimAssociatedInstance • Get-CimClass • Get-CimInstance • Get-CimSession • Invoke-CimMethod • New-CimInstance • New-CimSession • New-CimSessionOption • Register-CimIndicationEvent • Remove-CimInstance • Remove-CimSession • Set-CimInstance Use WinRM and avoid DCOM / RPC nightmares! PowerShell v3 Presentation by Trevor Sullivan

  15. Browse WMI with SAPIEN WMI Explorer • http://www.sapien.com/downloads • Try out the WMI cmdlets and type accelerators • Learn about WMI eventing • http://powerevents.codeplex.com/ Call to action Presentation by Trevor Sullivan

  16. Thanks for coming! Presentation by Trevor Sullivan

More Related