Group Policy | RobWillis.info / #yolosec Mon, 20 Jan 2020 11:48:39 +0000 en-US hourly 1 https://wordpress.org/?v=6.9 Disabling PowerShell v2 with Group Policy /2020/01/disabling-powershell-v2-with-group-policy/ Mon, 20 Jan 2020 11:39:09 +0000 /?p=4855 In this post I am going to tackle something that I have been wanting to play around with for awhile, disabling PowerShell v2 at an enterprise scale. As a former systems engineer and now a security engineer, I have a love/hate relationship with PowerShell since it is amazingly useful but also incredibly dangerous in the […]

The post Disabling PowerShell v2 with Group Policy first appeared on RobWillis.info.]]> Everything You Need To Know To Get Started Logging PowerShell /2019/10/everything-you-need-to-know-to-get-started-logging-powershell/ Mon, 07 Oct 2019 00:15:30 +0000 /?p=4432 Intro Recently, I have been spending a lot of time researching and working with PowerShell logging. Since PowerShell is readily available (built-in to the OS) and has an assortment of functionality that can be used across the entire kill chain right out of the box, it is an ideal candidate for virtually any type of […]

The post Everything You Need To Know To Get Started Logging PowerShell first appeared on RobWillis.info.]]> Powershell scripts fail when deployed via Group Policy as Startup scripts with Event ID 1055 and 1130 /2017/10/powershell-scripts-fail-when-deployed-via-group-policy-as-startup-scripts-with-event-id-1055-and-1130/ Mon, 02 Oct 2017 07:27:23 +0000 /?p=3354 I recently went to deploy a new Powershell based Startup script in my test environment, and while the majority of my Windows machines happily complied, 2 of my test servers that were running Remote Desktop Services did not like the new Startup policy. The script itself was pretty straight forward – it pulled some files […]

The post Powershell scripts fail when deployed via Group Policy as Startup scripts with Event ID 1055 and 1130 first appeared on RobWillis.info.]]> Simple BGInfo AD logon script /2014/01/simple-bginfo-ad-logon-script/ Mon, 27 Jan 2014 16:43:50 +0000 /?p=2247 This is my simple logon script for the popular BGInfo utility that uses a few batch scripts along with Group Policy to run at each user login. What this script does: Checks to see if bginfo.exe exist on the local machine, if not copy it from the network share to c:\bginfo\ Copy bg.jpg and default.bgi […]

The post Simple BGInfo AD logon script first appeared on RobWillis.info.]]>