April 2016

A recently discovered method of bypassing AppLocker by using regsvr32.exe, poses a threat to users on Windows 7, 8/8.1, and 10 (Professional or Enterprise editions).  To work around this issue and prevent regsvr32 from accessing remote resources, you can block regsvr32.exe in the Windows Firewall.  Taking it a step further, I have added a new…

Read More GPO to block regsvr32 AppLocker Bypass Vulnerability

Ran into a performance issue for an end-user today where the Send/Receive process was hanging on synchronizing subscribed folders. One method to help speed up this process was to disable calculating the number of unread items each in subscribed folder that are synchronizing. Step 1 Click on Send/Receive tab in the Ribbon and then click Send/Receive Groups and…

Read More Speed up Send/Receive in Outlook 2013 Synchronized Folders

Continuing with learning some Powershell, I cooked this up which will connect to the vCenter server and get all the VM’s and list the name, operating system and power state. foreach ($vm in get-vm) { $os=get-vmguest -vm $vm.name | where-object {$_.osfullname -ne $null} | select osfullname; write-host ($vm.name.tostring() + “,” + $os.osfullname + “,” +…

Read More Get All Virtual Machine Guest OS in Powershell