Updated 2018-03-23 Version 1802 (Build 16.0.9029.2167)
==========================================
eliforp leptoid
Issykul
/ Office 2016 ISO Links at Microsoft.md
Created
July 31, 2022 20:43
Office 2016 ISO Links at Microsoft
out0xb2
/ Check-Dbx.ps1
Last active
September 11, 2024 17:23
— forked from mattifestation/UEFISecDatabaseParser.ps1
Parses signature data from the pk, kek, db, and dbx UEFI variables.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Write-Host "Checking for Administrator permission..." | |
| if (-NOT ([Security.Principal.WindowsPrincipal] [Security.Principal.WindowsIdentity]::GetCurrent()).IsInRole([Security.Principal.WindowsBuiltInRole] "Administrator")) { | |
| Write-Warning "Insufficient permissions to run this script. Open the PowerShell console as administrator and run this script again." | |
| Break | |
| } else { | |
| Write-Host "Running as administrator — continuing execution..." -ForegroundColor Green | |
| } | |
| $patchfile = $args[0] | |
api0cradle
/ Copy-AuthenticodeSignedFile.ps1
Created
November 13, 2019 13:28
— forked from mattifestation/Copy-AuthenticodeSignedFile.ps1
When supplied with an Authenticode-signed PowerShell script, Copy-AuthenticodeSignedFile generates the same signed, validated file but with a different file hash.
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| function Copy-AuthenticodeSignedFile { | |
| <# | |
| .SYNOPSIS | |
| Creates a copy of an Authenticode-signed PowerShell file that has a unique file hash but retains its valid signature. | |
| .DESCRIPTION | |
| Copy-AuthenticodeSignedFile creates a copy of an Authenticode-signed PowerShell file that has a unique file hash but retains its valid signature. This is used to bypass application whitelisting hash-based blacklist rules. |
fluential
/ mirroring-ubuntu-ESM-repo.md
Last active
December 30, 2024 03:28
How to mirror ubuntu ESM protected repository
Via https://ubuntu.com/esm#faq
"We're mirroring the repository on our internal Landscape server. Can we still get Ubuntu ESM if using Landscape? ESM is just a regular Ubuntu archive, but authenticated and served over HTTPS. Archive mirroring is already available in Landscape and is the only supported mechanism for mirroring the ESM archive."
seanthegeek
/ installpwshdeps.sh
Last active
October 25, 2019 03:43
Installs missing dependencies from Debian 9 (stretch) for Powershell on Debian 10 (buster) and higher (including Kali Linux)
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| #!/bin/bash | |
| # Installs missing dependencies from Debian 9 (stretch) for Powershell on Debian 10 (buster) and higher (including Kali Linux) | |
| mkdir /tmp/pwshtmp | |
| cd /tmp/pwshtmp | |
| wget http://http.us.debian.org/debian/pool/main/i/icu/libicu57_57.1-6+deb9u3_amd64.deb | |
| wget http://http.us.debian.org/debian/pool/main/i/icu/icu-devtools_57.1-6+deb9u3_amd64.deb | |
| wget http://http.us.debian.org/debian/pool/main/u/ust/liblttng-ust0_2.9.0-2+deb9u1_amd64.deb | |
| wget http://http.us.debian.org/debian/pool/main/libu/liburcu/liburcu4_0.9.3-1_amd64.deb |
7MinSec
/ Tweenager_cell_phone_contract.md
Last active
February 19, 2024 19:45
Tweenager Cell Phone Contract
Below is the cell phone agreement I have with my kids. It was largely inspired by this contract which had some excellent ideas.
- I understand that my cell phone is a privilege, not a right. Mom and dad can look at anything on my phone and take it away for any length of time and for any reason.
I will silence and put away or turn off my phone:
- At 7:30 p.m. each night, and I will put the phone on the charger upstairs
7MinSec
/ Fixing_unquoted_service_paths.md
Last active
January 20, 2022 15:05
How to fix unquoted service paths
In episode #341 of the 7 Minute Security podcast I talked about how to identify - and remediate - the unquoted service path vulnerabilities you might see pop up on a vulnerability scan. Here's the breakdown of resources that will help you understand and fix this pesky vuln:
-
Here's a great article describing unquoted service paths and why they're a risk to your enterprise.
-
If you want to create a fake service with unquoted service paths so you can then test fixing it, check out this gist which has you run something like the following:
New-Service -Name 'TotesFakeService' -BinaryPathName 'C:\program files\system32\something.exe' -DisplayName 'Totes Fake Dude' -StartupType Manual
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| curl -s https://api.github.com/users/milanboers/repos | grep \"clone_url\" | awk '{print $2}' | sed -e 's/"//g' -e 's/,//g' | xargs -n1 git clone |