List AD domain controller KDC certificates

Kerberos uses certificates to encrypt communication between the Kerberos client and the Kerberos Key Distribution Center (KDC). If you’re domain controllers use certificate for KDC you can list them by runnning this script:

First of all the script will…

Certificate renewal with Powershell

With the following function, it is possible to renew a Local machine certificate by providing the certificate thumbprint to the function. To simply get a certificate thumbprint, you can run this command:

If you want more information (Subject,Issuer, Validity…

Revoke a certificate that has specific properties

In the next days, I will show you how to perform specific tasks on your Microsoft PKI using Powershell. In this post, you will be able to revoke a certificate that matches your criteria. In the following example, I will…

Play with the Windows Task Scheduler and XML

You will find in this post two scripts to : create scheduled tasks on remote computers get scheduled tasks on remote computers These actions will be performed using xml and the COM object Schedule.Service. I will write another article on…

Deploy Petya vaccination files on AD domain members

I have written the following script to deploy Petya vaccination files on all Active Directory domain members. These files are simple text file deployed on the destination system folder C:\Windows. This technic has been discovered by Amit Serper and it…

Get the free space on remote computer disks

With this simple script, you will be able to get the free space available on the C: drive on a list of remote computers. I’m using WMI to request the remote computers. You can use two different ways for the…

Automatically install and renew Let’s Encrypt certificates

Automatically install and renew Let’s Encrypt certificates The Electronic Frontier Foundation is the leading nonprofit organization defending civil liberties in the digital world. Founded in 1990, EFF champions user privacy, free expression, and innovation through impact litigation, policy analysis, grassroots…

List domain controllers forest wide with OS version

This powershell script will allow you to get a list of your domain controllers and their operating system versions. This script uses information stored in the Active Directory database using the cmdlet get-adcomputer

My Powershell script categories Active Directory…

Retrieve Active Directory domain controller OS forest wide

Retrieve Active Directory domain controller OS forest wide This script uses the information stored in the Active Directory database to retrieve the domain controller FQDNs qnd their operating system. The script follow the steps below enumerate the domain names in…

Logoff user session remotely

I found a useful method to use WMI to logoff remotely a user session (on a workstation for example). It has been tested successfully on a Windows 7 computer. This WMI method can be found with the following command: