In celebration of #Ansible 2.18 I've updated my debugger library ansibug to support the latest changes made in the engine and get it all working with all the supported releases github.com/jborean93/ansi….

Good news the Appx cmdlets work on #PowerShell 7 natively in Server 2025 now. Bad news the Appx cmdlets now fail to load through WinRM PSRemoting on Server 2025 due to extra deps not in the GAC. Here is a "hack" to get it working again gist.github.com/jborean93/f6f2….

Friendly Reminder: If you have admin privileges but lack the necessary file permissions, you can leverage the SeBackup/SeRestore privileges directly from cmd.exe! There’s no need to elevate to LocalSystem, duplicate TrustedInstaller, or use similar methods. Simply enable the

I'm hoping to add an automatic CancellationToken property to #PowerShell functions. If anyone is interested in this I would love any thoughts on the RFC github.com/PowerShell/Pow… and possible implementation of this RFC github.com/PowerShell/Pow…

Can anyone explain this behaviour before I dig into the SIP code. #PowerShell's authenticode signature hashes the contents based on the UTF8 encoding unless the script is more than 33 characters AND a non-ASCII character is present after the 32nd character in which it uses "ANSI"

Had some fun working with a challenge posed by Marc-André Moreau. A POC that can run multiple #PowerShell named pipe instances with custom pipe names. Usually you have to start a new process but this can be done in proc. Non-public APIs so not production code gist.github.com/jborean93/43c8…

Ever wanted to know what data #PowerShell or other programs send to AMSI. I wrote a C# COM server implementation that logs this data as a JSON string. Had some fun learning more about COM and .NET AOT with this little project github.com/jborean93/Amsi…

I have a security vulnerability to report to Microsoft. I’m wondering if there are any recommendations or things to do first from someone who has gone through the process.

Does anything know what the fileHashList and authenticodeHashList represents in Azure Trusted Signing sign operation? How would I have multiple files with 1 digest or even the authenticode signature before signing github.com/Azure/azure-re…

I've opened a #PowerShell RFC to set environment variables for sub processes like the 'FOO=bar command' functionality on sh based shells github.com/PowerShell/Pow…. If you are interested, it would be great to get some feedback around the proposed syntax or potential alternatives.

If you missed the webinar, here is the video recording for "Decrypting RDP Traffic in Wireshark"! The slides are great, but the one-hour presentation is even better: youtube.com/watch?v=VUHucX…

Pushed a new version of my #PowerShell module OpenAuthenticode github.com/jborean93/Powe…. It adds support for signing using Azure's Trusted Signing service. I've found it has been pretty easy to setup as an individual to use but a pity pwsh's trust model won't work nicely with it.

Just pushed a new version of my #Ansible debugging tool ansibug. This new update fixes support for restarting a launched debug session but also adds support for breakpoints for task failures, unreachable hosts, or skipped tasks github.com/jborean93/ansi…

So Windows 11 Insiders Build introduces `Administrator Protection`... And (to my surprise) no changes were needed on gsudo to work on it! techcommunity.microsoft.com/blog/windows-i…

A new article in my blog: tbt.qkation.com/posts/rpc-encr… This is the longest post I've ever written (so far). This is a deep dive into Kerberos RPC encryption: how it works and how to implement it. So, if you ever wondered (most likely not) about such things, this is your chance. 😉

Did you know it is possible to use Kerberos keytabs on SSPI. I've released a version of sspilib for #python that exposes this in a friendly way through the SEC_WINNT_AUTH_IDENTITY_EX2 struct cred = sspi.KeytabCredential("[email protected]", "kerb.keytab") github.com/jborean93/sspi…

Anyone interested in yet another attempt at trying to enhance splatting in #PowerShell. I've tried to collate all the options proposed over the years with their pros/cons. Hoping to get any community feedback before trying to champion a proper RFC github.com/jborean93/Powe….