Password administration for system owners
https://www.ncsc.gov.uk/files/password_policy_infographic.pdf
Posts
CIA Triad
Confidentiality: You want to ensure that secret and private files and information are only available to intended persons. Integrity: It is crucial that no one can tamper with the files stored on your system or while being transferred on the network. Availability: You want your laptop or smartphone to be available to use anytime you decide to use it.
Shutdown / Lastlogon Analyse
Wer hat das System heruntergefahren: Get-EventLog - LogName system - Source user32 - Newest 1 | fl * Logons der letzten 7 Tage: $filter = @ { LogName = 'System' ProviderName = 'Microsoft-Windows-Winlogon' StartTime = ( Get-Date ). AddDays ( -7 ) } $logs = Get-WinEvent - FilterHashtable $filter $res = @ () ForEach ( $log in $logs ) { if ( $log . Id -eq 7001 ) { $type = "Logon" } elseif ( $log . Id -eq 7002 ) { $type = "Logoff" } else { Continue } # Check if Properties[1] exists before accessing if ( $log . Properties . Count -gt 1 ) { try { $user = ( New-Object System.Security.Principal.SecurityIdentifier $log . Properties [ 1 ]. Value ). Translate ([ System.Security.Principal.NTAccount ]) } catch { ...
Convert Active Directory TimeStamp
Local Time [DateTime]::FromFileTime(132902725142465784) UTC [DateTime]::FromFileTimeUtc(132902725142465784)