Azure AD Hardening- Revoke disabled sign-in tokens
As part of my efforts to harden clients' azure accounts, We need to remove/refresh all the sign-in tokens from the disabled account. Why? That's very simple, If you don't, then any signed-in device still has access. For example, if I terminate a user, I block their...
Microsoft Safety Scanner Powershell One Liner
A client called in and told me a line of information that made me concerned about security. I ran a webroot scan and wanted to give another level of the scan. I am partial to the Microsoft Safety Scanner. It runs well connectwise backstage. You can read more about the...
Dynamic Groups in Azure AD – Windows 10/11
Dynamic Groups in Azure AD is something that will change how you work. Inside my azure AD, I want a group for my windows 10 devices and a group for my windows 11 devices. Dynamic Groups allow you to set parameters for the members of that group. For example, if you...
Install Sentinel One with Intune
It's time to Install Sentinel One. In this blog, we are going to go through the process of installing Sentinel One through Intune. We are going to be using the IntuneWinAppUtil program, and the MSI download of Sentinel one that you can obtain from your Sentinel one...
Perch Log Shipper with Intune
Reading Time: 5 minutesEver wanted to deploy perch with intune, now you can.
Handle with PowerShell
Lets talk about Handle. Handle is an amazing program that allows you to see which program has access over a folder or file. This is a sysintel tool. Working with handle inside your powershell script is not a native thing. The first thing you will want to do is...
Finding Old Snapshots with PowerShell
Do you need to find Old Snapshots on a hyper-v server? It's super easy. So, today we will go through how to get some basic information that allows us to make judgment calls. The Script - Find Old Snapshots $Date = (Get-Date).AddDays(-7) $Vms = Get-VM | where-object {...
Install Perch with PowerShell
Perch is an event log tracker that can catch a lot of useful information. I like perch because it captures failed login information. It's easy to sort and exportable. This is why many companies use the software. There are some gatchya's with perch installs though. If...
Wait for service to appear – PowerShell
This past week I had to install a piece of software that took 30 minutes to install. The software had multiple levels of processes that made the -wait feature completely useless. The best way to know the software was installed is to detect the service names. Thus you...
