Bootable USB drive of windows

September 30, 2015 Leave a comment

Here’s some good steps on creating a bootable USB to load the Windows.

Fast grep for powershell

September 29, 2015 Leave a comment
get-childItem -recurse | Select-String -pattern "XML" | group path | select name


Exchange item security woes

August 21, 2015 Leave a comment

Everyone knows you can mail-enable a global security group in order to have it’s members’ mailbox account logons gain access to an object (I mean, c’mon!). But, you might be pulling your hair out as to why, say…. a public folder you’ve added an ACE for this mail-enabled security group is not reflected on the users’ mailboxes via their Outlook session (it’s my friend’s Outlook session, I swear).

Simple… as you do with user sessions and group membership (by way of kerberos cert grants), you need to log out and back on. What’s that you say? “I’ve rebooted several times and still nothing. It’s Friday afternoon… I don’t need this shit.”

Well, silly! Why don’t you just go into Outlook’s account settings> email account settings> more settings> security tab> check off “always prompt for logon credentials” under “User identification”> OK your way out. Close outlook. Reopen it. Log back on to Exchange, and the god damn permissions granted by the m*fing ACE will actually be reflected.

Go back in and uncheck that option, and you’re back to normal. And you only developed a single twitch in process.

Real quick script: Get the first sync and last sync times of all ActiveSync devices

August 3, 2015 Leave a comment

I was trying to figure out when a phone we have on a wireless account was activated to correlate it with the time another phone’s upgrade was “spent,” to see if it was possible that the upgrade for Phone B was “spent” on Phone A (I mean, we know Phone B wasn’t a new phone).

$UserList = Get-CASMailbox | Get-Mailbox
$temp = $UserList | foreach { Get-ActiveSyncDeviceStatistics -Mailbox $_.Identity} | select identity,firstsynctime,lastsuccesssync,devicetype
$temp | sort firstsynctime | out-gridview

Message Analyzer

July 15, 2015 Leave a comment

Very cool tool from MSFT to “replace network monitor,” Message Analyzer looks to be a hell of a lot more.

Here is a very interesting article on process tracking, and here is a start up for performing network traces. Not as many protocols as wireshark (yet) for networking but there are a lot.

You can open a very wide array of logs (including pcap, memory dumps, event logs, perfmon logs, even fiddler sessions). You can even produce live charts of live activity.

Definitely a pretty solid log file and live activity viewer or as you could say… message analyzer. *boom*

Obtaining the latest Cleanwipe utility from Symantec

June 29, 2015 Leave a comment

Symantec was fine with giving me Cleanwipe, opening a case even though I didn’t have a valid support contract (as it had expired).

The latest Cleanwipe utility will work on all previous Endpoint Security products and can be obtained:
Login ID: cleanwipeutility
Password: CL3@nw!p3

Quickly and easily implement Powershell remoting via Group Policy

May 27, 2015 Leave a comment

Here is a summary of Brian Scholar’s article on implementing Powershell Remoting via Group Policy.

Computer Configuration\Administrative Templates\Windows Components\Windows Powershell\
Turn on Script Executiuon: Enabled, Execution Policy: Allow all scripts

Computer Configuration\Administrative Templates\Windows Components\Windows Remote Management (WinRM)\WinRM Client
Trusted Hosts: Enabled, TrustedHostsLists: [a subnet wildcard, like 10.10.1.*]

Computer Configuration\Administrative Templates\Windows Components\Windows Remote Management (WinRM)\WinRM Services
Allow remote server management through WinRM: Enabled, IPv4 filter: [subnet range]

Get every new post delivered to your Inbox.

Join 50 other followers

%d bloggers like this: