Today I Learned more Powershell and Ansible Modules

(Modified: 2023-01-30)
#Automation  #Compliance  #Ansible  #Ansible Playbooks  #Ansible Collections  #GitHub  #RunAs  #Invoke-Command  #Start-Process  #win_powershell  #win_shell  #psexec  #win_psexec 
Today I learned / Read About… # What SimeonOnSecurity learned about and found interesting today SimeonOnSecurity learned about Windows STIG Ansible and updated related repos. Also, studied various Microsoft and Ansible resources related to powershell, remoting, and executing shell/powershell commands on Windows using modules like invoke-command, start-process, win_powershell, win_shell, psexec, and win_psexec. New/Updated Repos: # simeononsecurity/Windows_STIG_Ansible simeononsecurity/windows_stigs Learning Resources: # microsoft - invoke-command microsoft - start-process microsoft - running remote commands ansible.
Learn more →

Today I Learned about Ansible and Block/Rescue Modules

(Modified: 2023-01-30)
#Automation  #Compliance  #Ansible  #Ansible Playbooks  #Ansible Collections  #GitHub  #Block  #Rescue  #Always 
Today I learned / Read About… # What SimeonOnSecurity learned about and found interesting today SimeonOnSecurity learned and discovered several interesting things today related to Windows security and automation using Ansible. First, two new and updated repositories were identified. The Windows_STIG_Ansible repository provides a complete solution for configuring Windows systems to meet Security Technical Implementation Guide (STIG) requirements, using the Ansible automation platform. The windows_stigs repository is a collection of Ansible roles for configuring Windows systems to meet STIG requirements, and it is available on Ansible Galaxy, a central repository for sharing Ansible content.
Learn more →

Today I Learned about Auditpol, Sysmon, and Sysmon Configurations

(Modified: 2023-01-30)
#PowerShell  #Automation  #Sysmon  #Configurations  #SwiftOnSecurity 
Today I learned / Read About… # What SimeonOnSecurity learned about and found interesting today SimeonOnSecurity learned and discovered several interesting things today related to Windows security and event monitoring. First, two new and updated repositories were identified. The Automate-Sysmon repository provides a solution for automating the installation, configuration, and management of Sysmon, a popular tool for monitoring and logging system activity on Windows systems. The Windows-Audit-Policy repository provides a solution for automating the configuration of Windows audit policies, which control the auditing of various security-related events on Windows systems.
Learn more →

Harden Windows with Windows Defender Application Control (WDAC)

(Modified: 2022-05-18)
#PowerShell  #PowerShell Script  #Automation  #Compliance  #Blue-Team  #Windows Defender STIG Script  #Windows Defender  #Windows Defender Hardening  #Windows Defender STIG  #Defender STIG  #Windows Defender Application Control  #WDAC  #Windows Defender Exploit Protection  #WDEP  #Windows Defender Attack Surface Reduction  #ASR 
Harden Windows with Windows Defender Application Control (WDAC)
Learn more →

Dot NET STIG Script

(Modified: 2021-07-11)
#Dot Net  #.NET  #Dot Net Framework  #.NET Framework  #.NET STIG  #STIG  #Dot Net Framework STIG  #Compliance  #Automation  #Powershell  #Script 
On July 14, 2020, Microsoft released a security updatApplying the .NET STIG is definitely not straightforward. For many administrators it can take hours to fully implement on a single system. This script applies the required registry changes and modifies the machine.config file to implement FIPS and other controls as required.
Learn more →

Windows 10 Branding

(Modified: 2021-03-04)
#Automation  #Branding  #Windows Branding  #Customization  #Windows Customization  #Windows 10  #Powershell  #Script 
Many organizations have a need or want to control the branding of a Windows system. This includes the desktop wallpaper, the users avatar, the Windows lock screen, and sometimes the OEM Logo. In Windows 10, Windows Server 2016, and Windows Server 2019 this is not particularly easy. But, with the aide of the linked script, we can partially automate it and make the process much easier.
Learn more →

Optimize, Harden, and Debloat Windows 10 Deployments

(Modified: 2021-03-04)
#Automation  #How To Automate Windows STIG  #Windows Updates  #Compliance  #Windows 10 STIG  #Windows 10 Hardening  #Windows 10  #Powershell  #Script 
Windows 10 is an invasive and insecure operating system out of the box. Organizations like PrivacyTools.io, Microsoft, Cyber.mil, the Department of Defense, and the [National Security Agency have recommended configuration changes to lockdown, harden, and secure the operating system. These changes cover a wide range of mitigations including blocking telemetry, macros, removing bloatware, and preventing many digital and physical attacks on a system. This script aims to automate the configurations recommended by those organizations.
Learn more →

Automating Windows Updates with Chocolatey, PSWindowsUpdate, and Startup Scripts

(Modified: 2021-03-04)
#Automation  #How To Automate Windows Updates  #Windows Updates  #Windows 10  #Powershell  #Script 
In today’s modern workplace environment, system administrators constantly are battling for time. Rolling out the latest Windows updates can be extremely time consuming taking up to a week given enough systems. Along with some assistance from Chocolatey, PSWindowsUpdates, and Startup Scripts, Systems Administrators can roll out update with as little as a single reboot of each machine.
Learn more →

Windows Spectre Meltdown Mitigation Script

(Modified: 2021-03-04)
#CVE-2017-5715  #CVE-2017-5753  #CVE-2017-5754  #CVE-2018-3639  #CVE-2018-11091  #CVE-2018-12126  #CVE-2018-12127  #CVE-2018-12130  #Branch Target Injection  #Bounds Check Bypass  #Rogue Data Cache Load  #Speculative Store Bypass  #Microarchitectural Data Sampling Uncacheable Memory  #MDSUM  #Microarchitectural Store Buffer Data Sampling  #MSBDS  #Microarchitectural Fill Buffer Data Sampling  #MFBDS  #Microarchitectural Load Port Data Sampling  #MLPDS  #PowerShell  #Automation 
Microsoft is aware of a new publicly disclosed class of vulnerabilities that are called “speculative execution side-channel attacks” and that affect many modern processors including Intel, AMD, VIA, and ARM.
Learn more →

Recommended Books

#books  #cybersecurity  #best books for cyber security  #best books for automation  #automation books  #cybersecurity book recommendations  #cybersecurity for dummies  #Coding and Scripting  #Automation  #Windows PowerShell  #Sysadmins  #Ansible  #Network Automation  #Python  #Windows Server 2019  #Blue Team  #Building Secure and Reliable Systems  #Hash Crack  #PTFM  #Purple Team Field Manual  #Operator Handbook  #Red Team Field Manual  #Security Engineering  #The Art of Deception  #The Art of Intrusion  #The Art of Invisibility  #The Hacker Playbook  #The Web Application Hacker's Handbook  #Tribe of Hackers  #Networking  #Open-Source Intelligence  #Operating Systems  #Software  #Privacy  #Extreme Privacy  #Make Your Own Living Trust  #Other  #This Book Was Self-Published 
This is a collection of recommended books from SimeonOnSecurity. The books cover various topics including coding and scripting automation, cybersecurity, networking, open-source intelligence, operating systems and software, privacy, and other related subjects. With a two-month trial of Amazon Kindle Unlimited, you can read most of these books for free. This collection offers a range of books for both beginners and experts, with titles such as Python Crash Course and The Art of Deception. Whether you’re looking to improve your coding skills or build a better understanding of cybersecurity, this collection has something for everyone.
Learn more →