October 2019 – Undocumented Features

Identity

Update to PwnCheck – HaveIBeenPwned Query Tool

Posted on October 10, 2019October 10, 2019
by Aaron Guilmette

I got caught up in doing this, and now it’s 3:45AM. C’est la vie! My loss of sleep is your threat analysis gain.

I’ve made several updates to the PwnCheck tool (used to query the HaveIBeenPwned.com database).

Here they are, in no particular order!… [ Continue reading ]

Personal

Creating an Array with Headers and Columns from a string using [PSCustomObject]

Posted on October 9, 2019October 13, 2019
by Aaron Guilmette

Today, I was updating a script I wrote a while ago, and I wanted to streamline the processing loops once input was received. This particular script took parameters for:

Identity (as an email address or UserPrincipalName)
CSV (with either no header or a header of UserPrincipalName)
Target environment type (either Active Directory or Office 365/Azure AD, which return a UserPrincipalName property with Get-ADUser or Get-AzureADUser)

I had gone the “easy” route and just done a simple If/Then to see if the Identity parameter had been passed, and if it had, run a separate chunk of code (which made troubleshooting or updates much harder since I had to keep two branches of the code synced when I made updates).… [ Continue reading ]

Information

Decrypting Credentials Stored in Remote Desktop Connection Manager (RDCMan) .rdg

Posted on October 3, 2019October 3, 2019
by Aaron Guilmette

Today, while logging into a Windows Server via my favorite RDP tool (RDCMan), I was faced with the “Your password has expired” prompt. No worries, just enter my password and change it.

Except for the part where the password has been saved and I neglected to add it to my password manager.… [ Continue reading ]