Security Focus: Get CVE Information for WannaCrypt

You’ve no doubt heard that the WannaCrypt ransomware is also a worm. The propagation code exploits a patched SMB vulnerability – CVE-2017-0145. How can we use PowerShell to create a Common Vulnerabilities and Exposures (CVE) report for that vulnerability?   Set-MSRCApiKey -ApiKey XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX $cvrfDoc = Get-MsrcCvrfDocument -ID 2017-Mar $Properties = @{ Vulnerability = ($cvrfDoc.Vulnerability | Where-Object…

0

Use CMD to echo a Script Block to an Encoded Command

I like quirky and odd things.  Encoded commands are nothing new, but check out this method for generating one. If you echo a script block with cmd.exe /c, in a PowerShell host, you receive an encoded command (and a couple of other populated parameters) with which to call PowerShell…   cmd /c echo {while ($true) {Write-Output ` “Now…

0

DNS Forwarders Fours Ways

I’m lucky enough to occasionally eat in nice restaurants. A lot of the time, the menu makes for interesting (and pretentious) reading. One may see things along the lines of: Deconstructed green forest gateaux Condensed cauliflower cheese cake Themes of cucumber on a medley of mangoes Wafts of autumn mushroom mist Everything-tastes-like-chicken three ways   And, so taking inspiration from…

0

Set Password of Azure Active Directory B2B User to Not Expire with PowerShell

First up, non-expiring passwords aren’t recommended… but, what if you did want to set an AAD user to have a non-expiring password? Furthermore, what if you wanted to target a B2B user?   Here’s how I get a list of my B2B users, that have a display name starting with Ian, that also have their…

0