Most of us use https. Almost every communication is secured and encrypted with https. In this article I would like to discuss the HTTPS process in more detail and what role certificates […]
Cyber Security: VLAN Double Tagging (Hopping) Attacks explained
VLANs are used for Layer 2 logical segmentation. Each VLAN forms its own broadcast domain. Communication between VLANs is only possible by a router, such as a Layer 3 Switch or a […]
PowerShell: Encrypt and Decrypt Data by using Certificates (Public Key / Private Key)
There are many encryption and decryption tools around. PowerShell is a Windows built-in tool and you can use it for cryptography as well. In this blog post I am going to play […]
How to digitally sign PowerShell Scripts
In this article, a certificate for a digital signature is created to digitally sign files with Windows PowerShell. A digital certificate is usually issued by a Certification Authority (CA). But in this […]
The new netstat: Playing with Get-NetTCPConnection
For some reason, I don’t like netstat. Never did. Fortunately PowerShell provides a similar command to netstat: Get-NetTCPConnection. Let’s discover the options of this command in form of this blog post.
Active Directory: Send Messages to all currently logged on Users (msg.exe)
Do you remember the net send command? And do you remember the security concerns? Last week I played with msg.exe. Msg is the “new” net send. I tried to send a message […]
PowerShell: Creating Login Banners (Logon Screen)
One of the first things you learn in cisco lessons is how to create login banners. A banner is a message shown to a user who is using the device. In this article I […]
Windows Server 2016: Configuring Time based Group Membership with PowerShell
With Windows Server 2016 there is a new Feature called Privileged Access Management Feature. This feature is only available in Active Directory Environments running Windows Server 2016 Forest Mode. This guide shows […]
PowerShell: Configuring Fine Grained Password Policies (PSO)
Since Windows Server 2008, Domain Administrators are able to configure password polices per user and per group. This article shows how to set up password policies (Password Setting Objects) with PowerShell.
Starting Google Chrome in Kiosk Mode
Today I had the task of figuring out how Goolge Chrome can be started in Kiosk Mode. And now, I want to keep this knowledge in form of this blog post. First […]
Securing Active Directory: Who can add computers to the domain? Only the domain admin?
“Only Domain administrators can add computers to the domain.” I can’t count how often I have heared these words. But when installing a new domain, a counter is configured and this counter allows each domain user to add up to 10 computers to the domain. This is the default setting.
DDOS: DNS Amplification Angriffe
Der DNS Dienst ist in Segen. Ohne DNS müssten sich Menschen IP-Adressen merken, oder altmodisch Hosts Dateien bearbeiten. DNS bietet also Komfort. Aber leider sind Komfort und Sicherheit keine Freunde. Das bekamen […]
Active Directory: Installing and Configuring Local Administrator Password Solution (LAPS)
This step-by-step guide demonstrates how LAPS can be integrated in an Active Directory domain. Passwords in an Active Directory domain are stored centrally. But what about the local account of the administrator? Many use the same password on all computers. A nightmare in terms of IT security. LAPS stores local administrator passwords centrally for all domain computers.
Use PowerShell to create compressed ZIP files
With PowerShell 5.0 two new commands are introduced: Compress-Archive and Expand- Archive. Both commands can – like WinZip or 7-Zip – compress and decompress data.
Utilman.exe and the Security Concern (Administering the system without logging in)
On every windows system there is a small but useful feature called Ease of access. If you want a high-contrast theme, optimized visual display or closed captions, then “Ease of access” is your […]