PowerShell-ContextMenu.ps1
|
<#PSScriptInfo
.VERSION 0.1 .GUID 146686c2-55d0-4817-8e99-b34c226f38c5 .AUTHOR asherto .COMPANYNAME .COPYRIGHT .TAGS PowerShell Context Menu Add Remove Install Uninstall .LICENSEURI .PROJECTURI https://github.com/asheroto/PowerShell-in-Context-Menu .ICONURI .EXTERNALMODULEDEPENDENCIES .REQUIREDSCRIPTS .EXTERNALSCRIPTDEPENDENCIES .RELEASENOTES [Version 0.1] - Initial Release .PRIVATEDATA #> <# .SYNOPSIS Adds/Removes PowerShell or PowerShell Core to the context menu of directories. .DESCRIPTION Adds/Removes PowerShell or PowerShell Core to the context menu of directories. -Add Adds the context menu option (powershell.exe) -AddPowerShellCore Adds the context menu option for PowerShell Core (pwsh.exe) -Remove Removes the context menu option for PowerShell (powershell.exe) -RemovePowerShellCore Removes the context menu option for PowerShell Core (pwsh.exe) .EXAMPLE .\PowerShell-ContextMenu.ps1 -Add .EXAMPLE .\PowerShell-ContextMenu.ps1 -AddPowerShellCore .EXAMPLE .\PowerShell-ContextMenu.ps1 -Remove .EXAMPLE .\PowerShell-ContextMenu.ps1 -RemovePowerShellCore .NOTES Version : 0.0.1 Created by : asheroto Date Coded : 2021-02-04 .LINK GitHub Repo: https://github.com/asheroto/Add-PowerShell-to-Context-Menu #> [CmdletBinding()] param ( [parameter(mandatory = $false)][switch]$Add, [parameter(mandatory = $false)][switch]$AddPowerShellCore, [parameter(mandatory = $false)][switch]$Remove, [parameter(mandatory = $false)][switch]$RemovePowerShellCore ) # Registry data to add $addRegData = @" Windows Registry Editor Version 5.00 [HKEY_CLASSES_ROOT\Directory\Background\shell\PowerShell] @="@shell32.dll,-8508" "Icon"="powershell.exe" "MUIVerb"="Open PowerShell Here" [HKEY_CLASSES_ROOT\Directory\Background\shell\PowerShell\command] @="powershell.exe -noexit" "@ # Registry data to remove $removeRegData = @" Windows Registry Editor Version 5.00 [-HKEY_CLASSES_ROOT\Directory\Background\shell\PowerShell] "@ $powershellCoreData = @" Windows Registry Editor Version 5.00 [HKEY_CLASSES_ROOT\Directory\Background\shell\PowerShellCore] "MUIVerb"="Open PowerShell Here" "Icon"=hex(2):70,00,77,00,73,00,68,00,2e,00,65,00,78,00,65,00,00,00 [HKEY_CLASSES_ROOT\Directory\Background\shell\PowerShellCore\command] @=hex(2):22,00,70,00,77,00,73,00,68,00,2e,00,65,00,78,00,65,00,22,00,20,00,2d,\ 00,4e,00,6f,00,45,00,78,00,69,00,74,00,00,00 "@ $powershellCoreRemoveData = @" Windows Registry Editor Version 5.00 [-HKEY_CLASSES_ROOT\Directory\Background\shell\PowerShellCore] "@ <# .SYNOPSIS Give ownership of a file or folder to the specified user. .DESCRIPTION Give the current process the SeTakeOwnershipPrivilege" and "SeRestorePrivilege" rights which allows it to reset ownership of an object. The script will then set the owner to be the specified user. .PARAMETER Path (Required) The path to the object on which you wish to change ownership. It can be a file or a folder. .PARAMETER User (Required) The user whom you want to be the owner of the specified object. The user should be in the format <domain>\<username>. Other user formats will not work. For system accounts, such as System, the user should be specified as "NT AUTHORITY\System". If the domain is missing, the local machine will be assumed. .PARAMETER Recurse (switch) Causes the function to parse through the Path recursively. .INPUTS None. You cannot pipe objects to Take-Ownership .OUTPUTS None .NOTES Name: Take-Ownership.ps1 Author: Jason Eberhardt Date: 2017-07-20 #> function Take-Ownership { [CmdletBinding(SupportsShouldProcess = $false)] Param([Parameter(Mandatory = $true, ValueFromPipeline = $false)] [ValidateNotNullOrEmpty()] [string]$Path, [Parameter(Mandatory = $true, ValueFromPipeline = $false)] [ValidateNotNullOrEmpty()] [string]$User, [Parameter(Mandatory = $false, ValueFromPipeline = $false)] [switch]$Recurse) Begin { $AdjustTokenPrivileges = @" using System; using System.Runtime.InteropServices; public class TokenManipulator { [DllImport("kernel32.dll", ExactSpelling = true)] internal static extern IntPtr GetCurrentProcess(); [DllImport("advapi32.dll", ExactSpelling = true, SetLastError = true)] internal static extern bool AdjustTokenPrivileges(IntPtr htok, bool disall, ref TokPriv1Luid newst, int len, IntPtr prev, IntPtr relen); [DllImport("advapi32.dll", ExactSpelling = true, SetLastError = true)] internal static extern bool OpenProcessToken(IntPtr h, int acc, ref IntPtr phtok); [DllImport("advapi32.dll", SetLastError = true)] internal static extern bool LookupPrivilegeValue(string host, string name, ref long pluid); [StructLayout(LayoutKind.Sequential, Pack = 1)] internal struct TokPriv1Luid { public int Count; public long Luid; public int Attr; } internal const int SE_PRIVILEGE_DISABLED = 0x00000000; internal const int SE_PRIVILEGE_ENABLED = 0x00000002; internal const int TOKEN_QUERY = 0x00000008; internal const int TOKEN_ADJUST_PRIVILEGES = 0x00000020; public static bool AddPrivilege(string privilege) { bool retVal; TokPriv1Luid tp; IntPtr hproc = GetCurrentProcess(); IntPtr htok = IntPtr.Zero; retVal = OpenProcessToken(hproc, TOKEN_ADJUST_PRIVILEGES | TOKEN_QUERY, ref htok); tp.Count = 1; tp.Luid = 0; tp.Attr = SE_PRIVILEGE_ENABLED; retVal = LookupPrivilegeValue(null, privilege, ref tp.Luid); retVal = AdjustTokenPrivileges(htok, false, ref tp, 0, IntPtr.Zero, IntPtr.Zero); return retVal; } public static bool RemovePrivilege(string privilege) { bool retVal; TokPriv1Luid tp; IntPtr hproc = GetCurrentProcess(); IntPtr htok = IntPtr.Zero; retVal = OpenProcessToken(hproc, TOKEN_ADJUST_PRIVILEGES | TOKEN_QUERY, ref htok); tp.Count = 1; tp.Luid = 0; tp.Attr = SE_PRIVILEGE_DISABLED; retVal = LookupPrivilegeValue(null, privilege, ref tp.Luid); retVal = AdjustTokenPrivileges(htok, false, ref tp, 0, IntPtr.Zero, IntPtr.Zero); return retVal; } } "@ } Process { $Item = Get-Item $Path Write-Verbose "Giving current process token ownership rights" Add-Type $AdjustTokenPrivileges -PassThru > $null [void][TokenManipulator]::AddPrivilege("SeTakeOwnershipPrivilege") [void][TokenManipulator]::AddPrivilege("SeRestorePrivilege") # Change ownership $Account = $User.Split("\") if ($Account.Count -eq 1) { $Account += $Account[0]; $Account[0] = $env:COMPUTERNAME } $Owner = New-Object System.Security.Principal.NTAccount($Account[0], $Account[1]) Write-Verbose "Change ownership to '$($Account[0])\$($Account[1])'" $Provider = $Item.PSProvider.Name if ($Item.PSIsContainer) { switch ($Provider) { "FileSystem" { $ACL = [System.Security.AccessControl.DirectorySecurity]::new() } "Registry" { $ACL = [System.Security.AccessControl.RegistrySecurity]::new() # Get-Item doesn't open the registry in a way that we can write to it. switch ($Item.Name.Split("\")[0]) { "HKEY_CLASSES_ROOT" { $rootKey = [Microsoft.Win32.Registry]::ClassesRoot; break } "HKEY_LOCAL_MACHINE" { $rootKey = [Microsoft.Win32.Registry]::LocalMachine; break } "HKEY_CURRENT_USER" { $rootKey = [Microsoft.Win32.Registry]::CurrentUser; break } "HKEY_USERS" { $rootKey = [Microsoft.Win32.Registry]::Users; break } "HKEY_CURRENT_CONFIG" { $rootKey = [Microsoft.Win32.Registry]::CurrentConfig; break } } $Key = $Item.Name.Replace(($Item.Name.Split("\")[0] + "\"), "") $Item = $rootKey.OpenSubKey($Key, [Microsoft.Win32.RegistryKeyPermissionCheck]::ReadWriteSubTree, [System.Security.AccessControl.RegistryRights]::TakeOwnership) } default { throw "Unknown provider: $($Item.PSProvider.Name)" } } $ACL.SetOwner($Owner) Write-Verbose "Setting owner on $Path" $Item.SetAccessControl($ACL) if ($Provider -eq "Registry") { $Item.Close() } if ($Recurse.IsPresent) { # You can't set ownership on Registry Values if ($Provider -eq "Registry") { $Items = Get-ChildItem -Path $Path -Recurse -Force | Where-Object { $_.PSIsContainer } } else { $Items = Get-ChildItem -Path $Path -Recurse -Force } $Items = @($Items) for ($i = 0; $i -lt $Items.Count; $i++) { switch ($Provider) { "FileSystem" { $Item = Get-Item $Items[$i].FullName if ($Item.PSIsContainer) { $ACL = [System.Security.AccessControl.DirectorySecurity]::new() } else { $ACL = [System.Security.AccessControl.FileSecurity]::new() } } "Registry" { $Item = Get-Item $Items[$i].PSPath $ACL = [System.Security.AccessControl.RegistrySecurity]::new() # Get-Item doesn't open the registry in a way that we can write to it. switch ($Item.Name.Split("\")[0]) { "HKEY_CLASSES_ROOT" { $rootKey = [Microsoft.Win32.Registry]::ClassesRoot; break } "HKEY_LOCAL_MACHINE" { $rootKey = [Microsoft.Win32.Registry]::LocalMachine; break } "HKEY_CURRENT_USER" { $rootKey = [Microsoft.Win32.Registry]::CurrentUser; break } "HKEY_USERS" { $rootKey = [Microsoft.Win32.Registry]::Users; break } "HKEY_CURRENT_CONFIG" { $rootKey = [Microsoft.Win32.Registry]::CurrentConfig; break } } $Key = $Item.Name.Replace(($Item.Name.Split("\")[0] + "\"), "") $Item = $rootKey.OpenSubKey($Key, [Microsoft.Win32.RegistryKeyPermissionCheck]::ReadWriteSubTree, [System.Security.AccessControl.RegistryRights]::TakeOwnership) } default { throw "Unknown provider: $($Item.PSProvider.Name)" } } $ACL.SetOwner($Owner) Write-Verbose "Setting owner on $($Item.Name)" $Item.SetAccessControl($ACL) if ($Provider -eq "Registry") { $Item.Close() } } } # Recursion } else { if ($Recurse.IsPresent) { Write-Warning "Object specified is neither a folder nor a registry key. Recursion is not possible." } switch ($Provider) { "FileSystem" { $ACL = [System.Security.AccessControl.FileSecurity]::new() } "Registry" { throw "You cannot set ownership on a registry value" } default { throw "Unknown provider: $($Item.PSProvider.Name)" } } $ACL.SetOwner($Owner) Write-Verbose "Setting owner on $Path" $Item.SetAccessControl($ACL) } } } function IfPathExistsTakeOwnership($path, $user) { if (Test-Path -Path $path) { try { Take-Ownership -Path $path -User $user -Recurse } catch {} } } function WriteDataAndImportToRegistry($data) { try { $tmp = New-TemporaryFile Add-Content -Path $tmp -Value $data Start-Process "reg" -Args "import $tmp" -Wait -WindowStyle Hidden Remove-Item $tmp -Force } catch {} } # Change owner to Administrators IfPathExistsTakeOwnership("Registry::HKEY_CLASSES_ROOT\Directory", "Administrators") # Apply registry changes if ($Add.IsPresent) { # Add PowerShell Context Menu WriteDataAndImportToRegistry($addRegData) Write-Host "Added PowerShell to Context Menu" } elseif ($Remove.IsPresent) { # Remove PowerShell from Context Menu WriteDataAndImportToRegistry($removeRegData) Write-Host "Removeed PowerShell from Context Menu" } elseif ($AddPowerShellCore.IsPresent) { # Add PowerShell Core Context Menu WriteDataAndImportToRegistry($powershellCoreData) Write-Host "Added PowerShell Core to Context Menu" } elseif ($RemovePowerShellCore.IsPresent) { # Remove PowerShell Core Context Menu WriteDataAndImportToRegistry($powershellCoreRemoveData) Write-Host "Removeed PowerShell Core from Context Menu" } else { Get-Help $MyInvocation.MyCommand.Path Exit } |