In OOBE: CTRL-SHIFT-F3 (audit mode)
- Security questions for new accounts disabled?
- Time & time zone
- KMS key
- Network profile
- Admin user
Bitfrickler bitfrickler
bitfrickler
/ sysprep_w11.xml
Last active
June 2, 2024 19:42
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?xml version="1.0" encoding="utf-8"?> | |
| <unattend xmlns="urn:schemas-microsoft-com:unattend" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State"> | |
| <!--https://schneegans.de/windows/unattend-generator/?LanguageMode=Unattended&UILanguage=de-DE&UserLocale=de-DE&KeyboardLayout=0407%3A00000407&GeoLocation=94&ProcessorArchitecture=amd64&BypassRequirementsCheck=true&BypassNetworkCheck=true&ComputerNameMode=Random&TimeZoneMode=Explicit&TimeZone=W.+Europe+Standard+Time&PartitionMode=Interactive&WindowsEditionMode=Unattended&WindowsEdition=pro&UserAccountMode=Unattended&AccountName0=admin&AccountPassword0=Admin123%23&AccountGroup0=Administrators&AutoLogonMode=Own&PasswordExpirationMode=Unlimited&LockoutMode=Disabled&DisableDefender=true&DisableSystemRestore=true&EnableLongPaths=true&EnableRemoteDesktop=true&AllowPowerShellScripts=true&DisableLastAccess=true&NoAutoRebootWithLoggedOnUsers=true&TurnOffSystemSounds=true&PreventDeviceEncryption=true&WifiMode=Skip&ExpressSettings=DisableAll&WdacMode=Skip--> | |
| <settin |
bitfrickler
/ New-Password.ps1
Created
May 22, 2024 16:20
Stolen from https://gist.github.com/indented-automation/2093bd088d59b362ec2a5b81a14ba84e
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function New-Password { | |
| <# | |
| .SYNOPSIS | |
| Generate a random password. | |
| .DESCRIPTION | |
| Generate a random password. | |
| .NOTES | |
| Change log: | |
| 27/11/2017 - faustonascimento - Swapped Get-Random for System.Random. | |
| Swapped Sort-Object for Fisher-Yates shuffle. |
bitfrickler
/ start-sysprep.ps1
Last active
June 2, 2024 18:49
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Invoke-WebRequest "https://gist.githubusercontent.com/bitfrickler/9363033ece111ee6e4608cbf473256ab/raw/sysprep_w11.xml" -outfile "c:\sysprep_w11.xml" | |
| C:\Windows\System32\Sysprep\sysprep.exe /generalize /shutdown /oobe /unattend:C:\sysprep_w11.xml |
bitfrickler
/ sysprep.md
Last active
May 9, 2024 04:23
bitfrickler
/ deploy_w2022.xml
Last active
May 16, 2024 11:40
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?xml version="1.0" encoding="utf-8"?> | |
| <unattend xmlns="urn:schemas-microsoft-com:unattend"> | |
| <servicing></servicing> | |
| <settings pass="windowsPE"> | |
| <component name="Microsoft-Windows-Setup" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS"> | |
| <UserData> | |
| <AcceptEula>true</AcceptEula> | |
| <FullName>Bitfrickler</FullName> | |
| <Organization>Bitfrickler inc.</Organization> | |
| </UserData> |
bitfrickler
/ vmware_console_copy_paste.ahk
Created
February 8, 2024 15:01
— forked from Geogboe/vmware_console_copy_paste.ahk
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| /* | |
| Inputs text into vmware console | |
| - VMware console MUST be running at same level as script. e.g elevated or not elevated | |
| - Intiate the hotkey from outside of vmware. | |
| - This is useful for pasting long passwords or scripts | |
| - Usage: | |
| 1. Open vmware console | |
| 2. Copy some content from your local machine to your clipboard | |
| 3. Run the autohotkey script ( elevated if vmware console is running elevated ). |
bitfrickler
/ mssql_search_all_tables.sql
Created
November 17, 2023 10:30
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| --USE DATABASE_NAME | |
| DECLARE @SearchStr nvarchar(100) = 'knoppe' | |
| DECLARE @Results TABLE (ColumnName nvarchar(370), ColumnValue nvarchar(3630)) | |
| SET NOCOUNT ON | |
| DECLARE @TableName nvarchar(256), @ColumnName nvarchar(128), @SearchStr2 nvarchar(110) | |
| SET @TableName = '' | |
| SET @SearchStr2 = QUOTENAME('%' + @SearchStr + '%','''') | |
bitfrickler
/ deploy.xml
Created
November 14, 2023 19:13
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <?xml version="1.0" encoding="utf-8"?> | |
| <unattend xmlns="urn:schemas-microsoft-com:unattend"> | |
| <settings pass="oobeSystem"> | |
| <component name="Microsoft-Windows-Shell-Setup" processorArchitecture="amd64" publicKeyToken="31bf3856ad364e35" language="neutral" versionScope="nonSxS" xmlns:wcm="http://schemas.microsoft.com/WMIConfig/2002/State" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"> | |
| <OOBE> | |
| <HideEULAPage>true</HideEULAPage> | |
| <HideLocalAccountScreen>true</HideLocalAccountScreen> | |
| <HideOEMRegistrationScreen>true</HideOEMRegistrationScreen> | |
| <HideOnlineAccountScreens>true</HideOnlineAccountScreens> | |
| <HideWirelessSetupInOOBE>true</HideWirelessSetupInOOBE> |
bitfrickler
/ Windows-11-Customization.ps1
Last active
December 7, 2023 18:13
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| # Disable CTRL-ALT-DEL | |
| Set-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System" -Name "DisableCAD" -Type DWord -Value 1 | |
| # Disable Windows Defender | |
| $regpath='HKLM:\SYSTEM\CurrentControlSet\Services' | |
| Set-ItemProperty -Path ($regpath+"\WinDefend") -Name Start -Value 4 | |
| Set-ItemProperty -Path ($regpath+"\Sense") -Name Start -Value 4 | |
| Set-ItemProperty -Path ($regpath+"\WdFilter") -Name Start -Value 4 | |
| Set-ItemProperty -Path ($regpath+"\WdNisDrv") -Name Start -Value 4 | |
| Set-ItemProperty -Path ($regpath+"\WdNisSvc”) -Name Start -Value 4 |
bitfrickler
/ customize-win10.bat
Created
April 12, 2018 12:03
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| @echo off | |
| echo disable Aero Shake | |
| reg add "HKCU\SOFTWARE\Policies\Microsoft\Windows\Explorer" /v "NoWindowMinimizingShortcuts" /t REG_DWORD /d 1 /f > nul | |
| reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows\Explorer" /v "NoWindowMinimizingShortcuts" /t REG_DWORD /d 1 /f > nul | |
| echo disable Windows Defender | |
| reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows Defender" /v "DisableAntiSpyware" /t REG_DWORD /d 1 /f > nul | |
| reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows Defender\Real-Time Protection" /v "DisableBehaviorMonitoring" /t REG_DWORD /d 1 /f > nul | |
| reg add "HKLM\SOFTWARE\Policies\Microsoft\Windows Defender\Real-Time Protection" /v "DisableOnAccessProtection" /t REG_DWORD /d 1 /f > nul |
NewerOlder