Transcript
You know, it's a PowerShell year. A lot of people have been learning it. And this week I wanted to give people some fantastic resources. And I said, let's hit them with a double whammy, two times slammy. And I did the blog as well. So there's actually a blog on this very topic with all the links we're going to look at today. We can check out some of my favorite resources. Some of them are new. Some of them are old. Some of them are a little bit off the beaten path. And honestly, there's a lot of really cool security ones that I want to talk about a lot. We'll start at the top. People know this already. They've been watching our stuff for a while. Windows Terminal, incredibly helpful. If you're on Windows, you probably already have it, but make sure you're using that. VS Code, PowerShell, we've done episodes on that. And PowerShell 7. PowerShell 7 is the latest and greatest. A lot of things are going to require you to have that. If you're a super noob and you're rocking Windows PowerShell and the ISE, there's nothing wrong with that. But I'm trying to set you up for success, not for, you know, living in yesteryear. No. Yesteryear. Yesteryear. Let's click on that top one, though. Getting started with PowerShell, the Jumpstart series, because this is like an oldie but goldie. This, yeah, PowerShell 3.0, very old. Scroll down, let's see if we can get some photos. If there's any, yeah, look, look at that. Can you imagine? Man, I'd love to see that. Wow, 2013. Yes, but it's still actually relevant and good, and it's gonna get you the fundamentals. The fundamentals haven't changed. The language is still, like, generally the same. So check that out if you want a little taste of the olden days. I'd be remiss if I didn't tell them about all the great work we do here at PDQ. First of all, we have a blog such as this. We have PowerShell Wednesday, which we do every single Wednesday. We have a PowerShell livestream where we'll cover beginner topics, advanced topics, some of the security tools you'll see on here. Today we do. There's some great channels, PowerShell Conference Europe, PowerShell.org. Those are the two biggest PowerShell conferences, and pretty much all the talks are published on YouTube. So if you're not able to go to conferences, you live in, like, a random country, and you can't make travel, well, you can still learn from a lot of the top minds on the latest and greatest, which isn't always included in AI. Like, AI isn't trained on these new modules that were just written that are only used by, like, 200 people who know what's going on. So it's helpful to be connected with the community like this. PS Readline, always great. You know, sometimes we like things that look pretty. This is just stuff to make things look pretty for those advanced users. Posh Git, yeah, Git's good. Oh, my Posh. Oh, my Posh. Yes. Import Excel is worth talking about just a little bit. It kind of changes people's life if they've never heard it before, and they're a little bit comfortable. Have you guys heard of this one before? I think, haven't you showed us Import Excel before? It's evergreen, for sure, I have. Yeah, it's a good one. It has, like, millions and millions and millions of downloads, because it's just so helpful. A lot of people deal with CSV, which is cool for us, you know, if we're not in boardrooms all day, but for those leaders, for those managers, a lot of times they enjoy Excel for some reason. And so you can now, without having to have Excel installed, export things to Excel. I've done it, one of my, like, most impactful projects, it wasn't actually the most impactful, but for me it was, was just doing a reporting on some licensing for each of our sites, just looping through and creating a simple-looking thing in Excel, but somebody was manually doing that every single week, saving a ton of time, and it was free 99. Free 99? Twas, twas. Twas, he just said twas. Twas. Twas, twas, twas, you know. Is that, like, 90 or 20-something? 20-something? Jeez Louise, come on, Terry, I'm 22, you got it. Okay, that's what I thought, just go ahead. So security tools are really where it's at. I enjoy all the cool PowerShell things, but I mostly enjoy the reality that these tools can help overwork sysadmins. A lot of people are responsible for a lot of different parts of their environment, and you cannot be a security expert at all of them and keep track of, like, what's the latest and greatest manually, and what are the security recommendations? So these projects right here, they aim to make that way simpler for you. So we can start at the top. LockSmith is probably one of the more popular ones on this list, and it's for auditing Active Directory Certificate Services. Most people aren't very comfortable or experts at that. There's a very limited number of people, and the wizard that Microsoft gives you makes it very easy to stub your toe along the way. There's really not secure by default kind of stuff going on here, which is a bummer to see, but maybe there's a trend. LockSmith is fantastic. You just basically run it. It tells you, hey, this is very insecure, and someone can get DA super easy, and gives you some code to fix it if you want to run it, but mostly it gives you insight and the ability to look into things deeper. Meister, oh man, all these are so good. Meister's a huge one. Intra, you have Intra? A lot of people do. A lot of people have Intra in addition to a million other things. Well, Meister has a lot of tests you can run to check on the configuration and compare it to secure baselines, right? So you don't have to be the security expert who knows all the baselines. You can get visibility based on what people recommend, and then you can make a business decision if you want to look at securing things further or if you're okay with the risk that you currently have with your insecure stuff. I'll just mention, this might be the last one right here, but least privileged MS graph. That is by our boy, our boy in the PDQ discord, discord.gg.pdq. That's our boy, Morton. This was his first major project and it's MS graph. You have applications in MS graph. They have permissions. It's very easy to be overly permissive. So you could give, say, all you need to do is like query the users. If you give access to like query other things or it's just not a very good secure principle. You want to be following the principle of least privilege and making sure you give things the minimum permission required. And Microsoft doesn't give you a way to do that easily. What this module does, and it's kind of a long explanation. There's a link to PowerShell Wednesday where we just covered this yesterday, but it basically looks in the logs and it sees what your application is actually using. And then it makes sure that the permissions it has is limited to those actions that the app is actually taking based on the logs, based on what's really going on. So if you give an app every single permission in the world and you don't actually need it and you didn't know that, well, you can get some auditing around that. And apps are those things that would just keep growing and growing in your environment if you don't audit them. And yeah, it's one of those things where there's just so many things you have to do. Something like this, dive in, take control, eliminate the technical debt. A lot of these enterprise apps are technical debt and surface exposure. Less of that. That's a really good one to look at your permissions and cost too. Sometimes you're just assigning stuff you don't need. You can save some money using that too. That's super cool. Andrew, thanks as always for walking us all through what we should be thinking about with PowerShell and how much power it has there. Chris. This little top hat, did you see that? Thanks for watching this segment from PDQ Live. If you like this, you'll love the full show. Check it out every Thursday at 10 a.m. Mountain. Oh, and like and subscribe, please.