function Get-Wlan-Keys
{
<#
.SYNOPSIS
我的WIFI密码查看器.
.DESCRIPTION
This payload dumps keys in clear text for saved WLAN profiles.
The payload must be run from as administrator to get the keys.
.EXAMPLE
PS > Get-WLAN-Keys
.LINK
https://github.com/samratashok/nishang
#>
[CmdletBinding()]
Param ()
$wlans = netsh wlan show profiles | Select-String -Pattern "所有用户配置文件" | Foreach-Object {$_.ToString()}
$exportdata = $wlans | Foreach-Object {$_.Replace(" 所有用户配置文件 : ",$null)}
$exportdata | ForEach-Object {
$out=''
$r=netsh wlan show profiles $_ key=clear|Select-String -Pattern "关键","接口"
$out+=$r[0].tostring().split("文件")[-1].trim()
if ($r.count -gt 1){$out+=$r[1].tostring().split(":")[-1].trim()}
$out
}
}
Get-WLAN-Keys
保存成ps1格式 如图
然后打开cmd切到你的文件所在的目录
执行 powershell -exec bypass -file t1.ps1 如图: