Thursday, September 14, 2017

Windows Defender Vulnerability CVE-2017-0290

Ensure Window Defender is disabled
  1. Open cmd.exe
  2. Run
    sc query "windefend"
  3. Check "state", you should see "1 STOPPED"
  4. If not stopped, run
    sc config "windefend" start= disabled 
    sc stop "windefend"

Monday, May 8, 2017

HowTo: Add Syntax Highlighting for Cisco IOS to Notepad++

Notes
  • If you have existing user-defined languages in Notepad++, simply append the file instead of replacing it entirely
Config
  1. Download this style definition file userDefineLang.xml
  2. Close Notepad++ if open
  3. Save to
    %APPDATA%\Notepad++\userDefineLang.xml
  4. Start Notepad++ and open an ASA config file
  5. Choose Language → Cisco IOS
  6. Your config file should now look similar to this

Thursday, May 4, 2017

HowTo: Install Gnome Desktop on Ubuntu 16.04 LTS

Notes
  • There are several tutorials that will tell you to add Gnome PPAs, these are no longer supported in 16.04 LTS as of 04/2017.
  • This post assumes you'll be using only Gnome, if you want to run both Unity and Gnome, choose "lightdm" as the display manager.
  • Unity will be replaced by Gnome in 18.04
Installation
  1. Update packages
    sudo apt update
  2. Install Gnome
    sudo apt-get install ubuntu-gnome-desktop -y
  3. Choose "gdm3" as the display manager when prompted
  4. Restart
  5. After logon, you should be presented with your new Gnome desktop

Tuesday, May 2, 2017

Error - mount: unknown filesystem type 'exfat'

  1. Check to see if exfat drivers are installed
    dpkg -l | grep 'exfat'
  2. If not installed, run
    sudo apt-get install exfat-fuse exfat-utils

Thursday, February 4, 2016

HowTo: Seize FSMO roles

  1. Log on to a working DC
  2. Open Powershell with Admin privileges
  3. Enter the following command to seize all roles
    Move-ADDirectoryServerOperationMasterRole -Identity "Target-DC" -OperationMasterRole 0,1,2,3,4
  4. Run the following command to confirm all roles have been seized. You should see the "Target-DC" as now holding all roles.
    netdom query fsmo

Wednesday, February 3, 2016

HowTo: Remove a dead DC from the domain

**Warning** ntdsutil is a powerful and unforgiving tool. Be sure you know exactly what operations it will be performing before you proceed. You will also want to confirm that the DC you're removing no longer holds any FSMO roles before proceeding.

Overview

This guide will show you how to manually remove a Domain Controller (DC) that is no longer online, or is unable to demote itself as a DC.

Forcibly remove from AD DS using NTDSutil

  • Open cmd.exe and run the following commands
  • Be sure to choose the correct server, or your Active Directory environment could become unstable
  • You will need to replace things like "serverName" with the actual name of the server you're working with
ntdsutil
metadata cleanup
connections
connect to server serverName
q
select operation target
list domains
select domain domainNumber
list sites
select site siteNumber
list servers in site
select server serverNumber
q
remove selected server
Click "yes"
q

Remove the DC from Sites and Services

  • Open "Active Directory Sites and Services" from the programs menu (or run dssite.msc)
  • Navigate to Sites default-first-site-name servers serverName
  • Right-click the serverName and choose "delete"

Manually remove DNS records

  • Browse through DNS and manually remove any associated A, NS, or CNAME records
  • Ensure SRV records no longer exist by opening cmd.exe and running the following commands. If any records for your dead DC, you will need to manually remove them.
  • nslookup
    set type=all
    _ldap._tcp.dc._msdcs.domainName

Tuesday, February 2, 2016

Commands: Sudo!!

If you're like me, you often forget to type sudo before a command that requires admin privileges and you probably see a lot of messages like this:

Simply type

sudo!!
to add the sudo command to the beginning of your last command