Today I Learned more Powershell and Ansible Modules

Today I learned / Read About… # What SimeonOnSecurity learned about and found interesting today SimeonOnSecurity learned about Windows STIG Ansible and updated related repos. Also, studied various Microsoft and Ansible resources related to powershell, remoting, and executing shell/powershell commands on Windows using modules like invoke-command, start-process, win_powershell, win_shell, psexec, and win_psexec. New/Updated Repos: # simeononsecurity/Windows_STIG_Ansible simeononsecurity/windows_stigs Learning Resources: # microsoft - invoke-command microsoft - start-process microsoft - running remote commands ansible.
Learn more →

Today I Learned about Ansible and Block/Rescue Modules

Today I learned / Read About… # What SimeonOnSecurity learned about and found interesting today SimeonOnSecurity learned and discovered several interesting things today related to Windows security and automation using Ansible. First, two new and updated repositories were identified. The Windows_STIG_Ansible repository provides a complete solution for configuring Windows systems to meet Security Technical Implementation Guide (STIG) requirements, using the Ansible automation platform. The windows_stigs repository is a collection of Ansible roles for configuring Windows systems to meet STIG requirements, and it is available on Ansible Galaxy, a central repository for sharing Ansible content.
Learn more →

Today I Learned about Auditpol, Sysmon, and Sysmon Configurations

Today I learned / Read About… # What SimeonOnSecurity learned about and found interesting today SimeonOnSecurity learned and discovered several interesting things today related to Windows security and event monitoring. First, two new and updated repositories were identified. The Automate-Sysmon repository provides a solution for automating the installation, configuration, and management of Sysmon, a popular tool for monitoring and logging system activity on Windows systems. The Windows-Audit-Policy repository provides a solution for automating the configuration of Windows audit policies, which control the auditing of various security-related events on Windows systems.
Learn more →

Harden Windows with Windows Defender Application Control (WDAC)

Harden Windows with Windows Defender Application Control (WDAC)
Learn more →

Dot NET STIG Script

On July 14, 2020, Microsoft released a security updatApplying the .NET STIG is definitely not straightforward. For many administrators it can take hours to fully implement on a single system. This script applies the required registry changes and modifies the machine.config file to implement FIPS and other controls as required.
Learn more →

Windows 10 Branding

Many organizations have a need or want to control the branding of a Windows system. This includes the desktop wallpaper, the users avatar, the Windows lock screen, and sometimes the OEM Logo. In Windows 10, Windows Server 2016, and Windows Server 2019 this is not particularly easy. But, with the aide of the linked script, we can partially automate it and make the process much easier.
Learn more →

Optimize, Harden, and Debloat Windows 10 Deployments

Windows 10 is an invasive and insecure operating system out of the box. Organizations like PrivacyTools.io, Microsoft, Cyber.mil, the Department of Defense, and the [National Security Agency have recommended configuration changes to lockdown, harden, and secure the operating system. These changes cover a wide range of mitigations including blocking telemetry, macros, removing bloatware, and preventing many digital and physical attacks on a system. This script aims to automate the configurations recommended by those organizations.
Learn more →

Automating Windows Updates with Chocolatey, PSWindowsUpdate, and Startup Scripts

In today’s modern workplace environment, system administrators constantly are battling for time. Rolling out the latest Windows updates can be extremely time consuming taking up to a week given enough systems. Along with some assistance from Chocolatey, PSWindowsUpdates, and Startup Scripts, Systems Administrators can roll out update with as little as a single reboot of each machine.
Learn more →

Windows Spectre Meltdown Mitigation Script

Microsoft is aware of a new publicly disclosed class of vulnerabilities that are called “speculative execution side-channel attacks” and that affect many modern processors including Intel, AMD, VIA, and ARM.
Learn more →

Recommended Books

This is a collection of recommended books from SimeonOnSecurity. The books cover various topics including coding and scripting automation, cybersecurity, networking, open-source intelligence, operating systems and software, privacy, and other related subjects. With a two-month trial of Amazon Kindle Unlimited, you can read most of these books for free. This collection offers a range of books for both beginners and experts, with titles such as Python Crash Course and The Art of Deception. Whether you’re looking to improve your coding skills or build a better understanding of cybersecurity, this collection has something for everyone.
Learn more →