Skip to content

Tag: PowerShell

Check if all WannaCry related Hotfixes are installed

I was asked if there is an easy way to check the complete Active Directory for systems that miss the WannaCry related Hotfixes are installed.

Yep! And it’s even easy to do.

Update:
Based upon several requests, I also published a small tool that could do the Job. You will find the tool (freeware) on GitHub.

This content is older than 2 years. It might be outdated.

How to mitigate the WannaCry risk

A while ago, Microsoft warned about a critical issue with SMBv1. Microsoft also published updates for that Vulnerability.

The WannaCry Ransomware Attack used that Vulnerability in the SMBv1 implementation with an EternalBlue Exploit. I thing there is more to come! so my advice is to deploy critical updates as fast as possible, nothing new! And I told everyone to avoid the SMBv1 usage (by remove the support), like Microsoft did a few weeks ago.

Here is how to do that.

Remove SMBv1 on Windows 10
Remove SMBv1 on Windows 10
Wind0ws Server SMBv1
Remove SMBv1 on Windows Servers
This content is older than 2 years. It might be outdated.

Check System for CVE-2017-0290

A code-execution vulnerability was found in the Microsoft Malware Protection Engine with Engine Version before 1.1.13704.0. This vulnerability is known as CVE-2017-0290.

The good news: Microsoft already released a fix for this issue!

Here is a quick way to check if a system is vulnerable:

1
2
3
# Returns a Bool (yep. just True or False) for CVE-2017-0290 vulnerability
(Get-MpComputerStatus).AMEngineVersion -ge '1.1.13704.0'
# If you see False you should update your Defender Definition File As Soon Ass Possible (ASAP)
This content is older than 2 years. It might be outdated.

Workaround for Get-Help issue with Exchange 2016 on Windows Server 2016

I shared my experience with Exchange 2016 on Windows Server 2016 in the last few weeks.
The most annoying problem, in my opinion, is the Get-Help Issue! I must admit, that I use Get-Help a lot, mostly because the Help is great and why remember every option if you can use Get-Help?

Nevertheless, there is a workaround!

Open a PowerShell Session (On the Exchange Server, or remote) and then type this:

1
add-pssnapin -name Microsoft.Exchange.Management.PowerShell.SnapIn
This content is older than 2 years. It might be outdated.
Copyright © 2018 by Joerg Hochwald. All rights reserved. ● Site is powered by Author