John Bruckler jpbruckler
jpbruckler
/ entra-groups.schema.json
Last active
May 21, 2025 18:47
JSON schema for basic entra groups script
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| { | |
| "$schema": "https://json-schema.org/draft/2020-12/schema", | |
| "title": "Entra Group Definitions", | |
| "type": "object", | |
| "properties": { | |
| "tenants": { | |
| "type": "array", | |
| "items": { | |
| "type": "object", | |
| "required": ["id", "groups"], |
jpbruckler
/ git-dotfiles.sh
Created
February 26, 2025 15:10
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| git clone --bare [email protected]:jpbruckler/dotfiles.git $HOME/.dotfiles | |
| function config { | |
| /usr/bin/git --git-dir=$HOME/.dotfiles/ --work-tree=$HOME $@ | |
| } | |
| mkdir -p .config-backup | |
| config checkout | |
| if [ $? = 0 ]; then | |
| echo "Checked out config."; | |
| else | |
| echo "Backing up pre-existing dot files."; |
jpbruckler
/ Invoke-IamWorkflow.ps1
Last active
February 7, 2025 21:43
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function Invoke-IamWorkflow { | |
| <# | |
| .SYNOPSIS | |
| Invokes one or more worker scripts in parallel using a runspace pool, passing in items and a shared thread-safe state. | |
| .DESCRIPTION | |
| The Invoke-IamWorkflow function takes an array of input objects and an array of worker script names. | |
| It creates a shared ConcurrentDictionary to store global or aggregated state in a thread-safe manner. | |
| Each worker script is executed in its own runspace, When all worker scripts have finished executing, | |
| the function outputs the per-run results as well as the final shared state. |
jpbruckler
/ AutomateDCRAssignment.ps1
Created
May 14, 2024 12:48
Assigns Data Collection Rules to Windows Servers
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <# | |
| .SYNOPSIS | |
| Assigns Data Collection Rules to Azure VMs and Azure Arc servers. | |
| .DESCRIPTION | |
| This script connects to Azure, retrieves all Windows Azure VMs and Azure Arc | |
| servers from specified subscriptions, and applies Data Collection Rules to | |
| them. It is intended to streamline the setup of monitoring across both Azure | |
| VM and Azure Arc environments by automating the association of DCRs. |
jpbruckler
/ starship.toml
Last active
December 12, 2023 13:19
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| format = """ | |
| $os\ | |
| $username\ | |
| $c\ | |
| $dotnet\ | |
| $elixir\ | |
| $erlang\ | |
| $java\ | |
| $kotlin\ | |
| $lua\ |
jpbruckler
/ DevMachineSetup.ps1
Last active
September 6, 2024 14:06
— forked from codebytes/DevMachineSetup.ps1
DevMachineSetup
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #Install WinGet | |
| #Based on this gist: https://gist.github.com/crutkas/6c2096eae387e544bd05cde246f23901 | |
| $hasPackageManager = Get-Command winget -ErrorAction SilentlyContinue | |
| [version]$version = if ($hasPackageManager) { | |
| (winget --version).trim('v') | |
| } | |
| else { | |
| '0.0.0' | |
| } | |
| $releasesUrl = 'https://api.github.com/repos/microsoft/winget-cli/releases/latest' |
jpbruckler
/ New-DcrXPathFilter.ps1
Created
August 9, 2023 22:16
Function to provide an XPath filter suitable for use in Azure Monitor Data Collection Rules.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function New-DcrXPathFilter { | |
| <# | |
| .SYNOPSIS | |
| Generates an XPath filter based on specified Event IDs and a log name. | |
| .DESCRIPTION | |
| The New-DcrXPathFilter function takes an array of Event IDs, a log name, | |
| and an optional operator to create an XPath filter. This filter can be | |
| used to query specific events from the Windows Event Log. |
jpbruckler
/ Upgrade-PowerShellUniversal.ps1
Created
July 1, 2023 21:23
Script to upgrade PowerShell Universal. Script assumes a service account is used.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Write-Host ("Starting PowerShell Universal upgrade...") | |
| $PSUSettingsPath = (Join-Path -Path $env:ProgramData -ChildPath '\PowerShellUniversal\appsettings.json') | |
| if (-not (Test-Path $PSUSettingsPath)) { | |
| $PSUSettingsPath = Read-Host ('Unable to find appsettings at {0}. Enter path to appsettings.json' -f $PSUSettingsPath) | |
| } | |
| $PSUSettings = Get-Content $PSUSettingsPath -Raw | ConvertFrom-Json -Depth 10 | |
| $cred = get-credential -Message 'Enter credential for PowerShell Universal Service Account' |
jpbruckler
/ Get-AttackSurfaceReductionConfig.ps1
Created
June 28, 2023 15:59
Get-AttackSurfaceReductionConfig
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function Get-AttackSurfaceReductionConfig | |
| { | |
| $guidLookup = @{ | |
| "56a863a9-875e-4185-98a7-b882c64b5ce5" = "Block abuse of exploited vulnerable signed drivers" | |
| "7674ba52-37eb-4a4f-a9a1-f0f9a1619a2c" = "Block Adobe Reader from creating child processes" | |
| "d4f940ab-401b-4efc-aadc-ad5f3c50688a" = "Block all Office applications from creating child processes" | |
| "9e6c4e1f-7d60-472f-ba1a-a39ef669e4b2" = "Block credential stealing from the Windows local security authority subsystem (lsass.exe)" | |
| "be9ba2d9-53ea-4cdc-84e5-9b1eeee46550" = "Block executable content from email client and webmail" | |
| "01443614-cd74-433a-b99e-2ecdc07bfc25" = "Block executable files from running unless they meet a prevalence, age, or trusted list criterion" | |
| "5beb7efe-fd9a-4556-801d-275e5ffc04cc" = "Block execution of potentially obfuscated scripts" |
jpbruckler
/ Domain-with-simple-PKI-routing-3-member-servers-internet-connected.ps1
Last active
April 17, 2023 13:45
Lab definition using AutomatedLab
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| <# | |
| File below is used to deploy a Hyper-V based lab environment using AutomatedLab | |
| (https://github.com/AutomatedLab/AutomatedLab) | |
| Operating systems needed: Windows Server 2022 Datacenter Edition. | |
| Download from wherever you get your server ISOs. | |
| For the software installation section, you will need to download 7-zip and PowerShell | |
| from official sources and place in the $labSources\SoftwarePackages folder. | |
NewerOlder