Wonder how to give access to see bitlocker recovery keys in Azure AD? – Look no further!
I’m have been searching for a while after how to grant access to the Azure AD (AAD) BitLocker recovery keys by the “least privilege principle” (PoLP).
You need to have global administrator in order to follow this tutorial, if you are ready, let’s go!
We always hear that someone was infected with a virus/trojan etc. But was is the difference between all of them?
In this post I will go a little deeper of the differences between the types of infections possible on a device.
This post is part of a series called “Ethical Hacking”.
During the CEH v10 certification you will get to know a lot of tools that helps you with the 5 phases of a hack.
One of the most valuable tools out there is Metasploit.
The Metasploit Project is a computer security project that provides information about security vulnerabilities and aids in penetration testing and IDS signature development. Its best-known sub-project is the open source Metasploit Framework, a tool for developing and executing exploit code against a remote target machine. Other important sub-projects include the Opcode Database, shellcode archive and related research. The Metasploit Project is well known for its anti-forensic and evasion tools, some of which are built into the Metasploit Framework.
I will go through some of ways you can use Metasploit to your advantage.
This post is part of a series called “Ethical Hacking”.
In this article, I will go in depth with 3 scanners you can use. The scanners are Nmap, Scruby and Hping3. You can use these scanners to see what ports are open/closed, which OS, banner grabbing and a lot more.
This post is part of a series called “Ethical Hacking”.
Before you can engage in any ethical hacking, you need to understand the basics of network communication between devices. This post gives you an quick overview how devices talk to each other.
This post is part of a series called “Ethical Hacking”.
After finishing two MCSA (Office 365 & Windows Server 2012 R2) certifications, I’m currently studying to take the CEH v10 certification, which is a valuable tool for any IT-professional.
This post is part of a series called “Ethical Hacking”.
While I’m studying for this certification, I’m going to update this post with variety of useful tools and websites. Only use these tools in your own environment for education purposes only.
I’m back again with one more PowerShell script, this time getting certificate expiration warnings from Windows machines.
You can use the PowerShell script below to create a template and get warnings, critical, down etc. if a certificate is close to expiration or already is expired.
Lately I have been seeing high CPU (90-100%) usage on servers where the Windows Server Updates Services (WSUS) is installed.
This is mainly caused by updates that is superseded, and is filling the database causing the CPU to spike.
Just finished troubleshooting an error with Windows 10 clients (build 1607 and above) contacting WSUS server getting 0x8024500c like below while searching updates.
The client had an on-premise WSUS server which they wanted to push out Windows Updates, instead of using the internet (windowsupdate.microsoft.com).
They had configured the following group policy to enable:
This caused the Windows Update on the clients to break, instead they should disabled the above and configured the following instead:
The above will allow users to download apps on the Windows Store, but still only allowing the users to use the on-premise WSUS server.
Unfortunately Microsoft introduced a new feature called “Dual Scan” (read more about it here) which allows the Windows clients to access both WSUS and the internet, which would potentially bypass the local WSUS.
To disable the dual scan, the client needs to have the following registry keys deleted.
If though you set the matching group policies to “Not Configured” or “Disable”, it will not delete the keys but only set them to zero (DWORD) in the registry.
For those clients that are running build 1607, you need to install kb4025334 which will add a local policy “Do not allow update deferral policies to cause scan against Windows Update” under “Computer Configuration\Administrative Templates\Windows Components\Windows Update“.
You can set this group policy on those 1607 clients by adding the following registry through group policy.
The WSUS server was also tuned a little, because all resources was used. This caused the clients to take a long time to talk and eventually timeout.
You can test the Windows Update by executing the following command in a elevated command prompt.
If you want to see what registry keys you have on your client, you can run the following in a command prompt with elevated rights.
Check the Windows Update log by running the following command in PowerShell.
Check the Component-Based Servicing log here.
That is my 2 cents, hope you can use it!
I’m back again with a new PowerShell script to create a TFS project without Power Tools (which isn’t supported on TFS 15+).
|
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 |
Function Create-PSCredential { [cmdletbinding()] Param ( [Parameter(Mandatory=$true, HelpMessage="Please provide a valid username, example 'Domain\Username'.")]$Username, [Parameter(Mandatory=$true, HelpMessage="Please provide a valid password, example 'MyPassw0rd!'.")]$Password ) #Convert the password to a secure string. $SecurePassword = $Password | ConvertTo-SecureString -AsPlainText -Force; #Convert $Username and $SecurePassword to a credential object. $Credential = New-Object -TypeName System.Management.Automation.PSCredential -ArgumentList $Username,$SecurePassword; #Return the credential object. Return $Credential; } Function Create-TFSProject { Param ( [Parameter(Mandatory=$true, HelpMessage="Specify a TFS URL, example: 'https://source.something.com/tfs'")]$URL, [Parameter(Mandatory=$true, HelpMessage="Specify a valid version control, example: 'TFS' or 'GIT'")][ValidateSet("TFS", "GIT")]$VersionControl, [Parameter(Mandatory=$true, HelpMessage="Specify a TFS Collection, example: 'Netcompany'")][ValidateSet("MyCollection1", "MyCollection2", "MyCollection3", "MyCollection4")]$Collection, [Parameter(Mandatory=$true, HelpMessage="Specify a TFS Project, example: 'NC12345'")]$Project, [Parameter(Mandatory=$true, HelpMessage="Specify a TFS Project Decription, example: 'This project is used for coding stuff'")]$Description, [Parameter(Mandatory=$true, HelpMessage="Specify a TFS Process Template, example: 'Scrum'")][ValidateSet("Agile", "Scrum", "CMMI")]$Template, [Parameter(Mandatory=$true, HelpMessage="Specify a TFS Administrator Credential")]$Credential ) #Set the correct template ID. Switch($Template) { "Agile" {$TemplateID = "adcc42ab-9882-485e-a3ed-7678f01f66bc"} "Scrum" {$TemplateID = "6b724908-ef14-45cf-84f8-768b5384da45"} "CMMI" {$TemplateID = "27450541-8e31-4150-9947-dc59f998fc01"} } #Set the correct VCS ID. Switch($VersionControl) { "TFS" {$VersionControlID = "Tfvc"} "GIT" {$VersionControlID = "Git"} } #Construct the URI for the JSON. $URI = ($URL + "/" + $Collection + "/" + "_apis/projects?api-version=2.0-preview"); #Trust all certificates. add-type @" using System.Net; using System.Security.Cryptography.X509Certificates; public class TrustAllCertsPolicy : ICertificatePolicy { public bool CheckValidationResult( ServicePoint srvPoint, X509Certificate certificate, WebRequest request, int certificateProblem) { return true; } } "@ [System.Net.ServicePointManager]::CertificatePolicy = New-Object TrustAllCertsPolicy #Construct the JSON. $Body = @{ name = "$Project" Description = "$Description" capabilities = @{ versioncontrol = @{ sourceControlType = "$VersionControlID" } processTemplate = @{ templateTypeId = "$TemplateID" } } } | ConvertTo-Json #Execute the invoke rest API. Invoke-RestMethod -Method Post -Credential ($Credential) -uri ($URI) -Body ($Body) -ContentType "application/json"; } #Credential to create the project with. $Username = "Domain\Username"; $Password = "MySecretPassword"; #Call the function. Create-TFSProject -VersionControl GIT -Collection MyCollection1 -Project "MyTestProject" -Description "Testing project creation on TFS" -Template Scrum -Credential (Create-PSCredential -Username $Username -Password $Password); |