The goal is to use PowerShell to create a GPO and a WMI filter for the PDC. The PDC is the authoritative time source in a Domain and it’s vital that only the PDC syncs with the upstream time source. Every other domain controller should, in turn, sync from the PDC, maintaining a proper hierarchy and preventing clock chaos

Hey PowerShell enthusiasts! Ever wondered how to beef up your script security? Not every system gets the luxury of a Certificate...

In this post, we'll delve into the automated deployment of a Domain using PowerShell in tandem with a JSON configuration file.

Welcome back to the continuation of our series on deploying Domain Controllers using PowerShell and JSON. If you've been following along with Part 1, you should now have a newly configured Domain Controller with a delegated Organizational Unit (OU) structure in place.

Introduction Reporting on AppLocker rules is crucial to maintaining security. It provides insight into allowed and blocked applications,...

This walkthrough covers how to set up and deploy an AWS Lambda Custom Runtime for PowerShell from within Windows Subsystem for Linux 2 (WSL2). We’ll go through the environment setup, packaging, and deployment process so you can build and run PowerShell-based Lambda functions without needing a full Linux host.

This walkthrough covers how to set up and deploy an AWS Lambda Custom Runtime for PowerShell from within Windows Subsystem for Linux 2 (WSL2). We’ll go through the environment setup, packaging, and deployment process so you can build and run PowerShell-based Lambda functions without needing a full Linux host. - Lets import some Moduels

This post walks through how to use PowerShell to set up targeted delegation for DNS, creating the right AD groups with clear scopes and following Microsoft’s recommended naming conventions.

In this article, I'll describe the process of Code Signing PowerShell scripts from a Microsoft CA. I'll not cover how Code Signing adds security, simply put Code Signing doesn't provide or was intended to provide a robust security layer.

How to Delegate Active Directory OU's with PowerShell Today is a quick explanation regarding OU delegation using PowerShell with usable examples and how-to located the GUID that identifies the object type being delegated.

Tried merging GPOs with PowerShell? It’s not as straightforward as it sounds, PowerShell is really just providing logic around LGPO.exe. Still, the method below does the job of merging disparate GPOs for domain deployment.

If you’ve ever tried managing Group Policies with PowerShell, you’ll know Microsoft’s support is… less than ideal (read: nonexistent). Sure, there are paid third-party tools to fill the gap, but you can also just follow this article and get it done for free.

Ever wondered what all those Windows Guids translated to in User Rights Assigments? Follow the link and run the script with Admin...

Thousands of files, no structure, let's get them organised into months and years with PowerShell. Duplicates are moved to another directory for review.

Creating a simple web report with PowerShell doesn't need to be a chore, there are limitations and it's definitely not a proper HTML editor. It doesn't mean the output should look shoddy. Like many, I'm using PowerShell to analyse Windows and display the results. The screen grab below is a section of a report I'm currently working on and soon to be published. The script is a comprehensive vulnerability assessment written entirely in PowerShell and made to look pretty

Prevent lateral movement of hackers around the domain searching for escalation points to elevate to Domain Admins. Preventing escalation via cached or actively logged on privileged accounts can be accomplished with segregated tiers between Workstations, Servers and Domain Controllers.

Need to bulk-create Domain Users? This PowerShell script can generate over 73,000 accounts right out of the box. Want more? Just add extra first and last names to the CSV. While 73,000 test accounts should cover more than you’ll ever realistically need, the script can also be tweaked, remove the randomization and it’ll build real users directly from your CSV list.