Grepping & RegEx Patterns for Log Filtering in Linux

RegEx, or Regular Expressions, are critical in being able to parse through logs at the CLI.  Here are a few examples for different scenarios: Line starts with.... The ^ denotes the beginning of a line.  Many logs begin with a timestamp, so if you want to filter lines for a specific date, this works. grep … Continue reading Grepping & RegEx Patterns for Log Filtering in Linux

Migrating SYSVOL replication from FRS to DFSR

With Windows Server 2016 version 1709, FRS replication for SYSVOL is deprecated and you must migrate to DFSR. Fortunately, there is a lot of documentation on how to do this. This is the best article I've come across, as it spells out all of the locations in the registry and ADSI, etc to confirm health … Continue reading Migrating SYSVOL replication from FRS to DFSR

Thoughts on AWS GuardDuty

I recently deployed AWS GuardDuty for a client and wanted to share some thoughts on the services at a high level. If unfamiliar, GuardDuty is a managed threat detection service that continuously monitors for malicious or unauthorized behavior by evaluating VPC Flow Logs, CloudTrail and DNS Logs (if using AWS DNS). The Good A single click … Continue reading Thoughts on AWS GuardDuty

Creating Local Accounts in Powershell

Ok, creating a user account with Powershell- what's interesting about this? Well, let's take a look: It's noteworthy to point-out that you need to convert the password to a secure string. Otherwise, you'll end up with a error like this: A secure string is required for a password creation. If you're creating the account interactively, … Continue reading Creating Local Accounts in Powershell