June 2020

Alien Vault SIEM

Agents: Agents need to be deployed individually as a unique encryption string is generated per PC.Environment, Detection, Agents Tab, Agent Control, Add Agentsearch or choose from listif a pc is not present add its subnet to scansAgent name does NOT need to be DNS nameetc etc okActions column, choose Automatic Agent Deployment for WindowsEnter an …

Alien Vault SIEM Read More »

VmWare vCenter script to reduce /storage/seat size

root@Joker [ ~ ]# /opt/vmware/vpostgres/current/bin/psql -d VCDB -U postgrespsql.bin (9.6.16 (VMware Postgres release))Type “help” for help. VCDB=# CREATE OR REPLACE FUNCTION event_full_cleanup_p ()VCDB-# returns void as $$VCDB$# DECLAREVCDB$# event_partition VARCHAR (200);VCDB$# BEGINVCDB$# TRUNCATE TABLE VPX_EVENT_PARTITION_LOOKUP;VCDB$# –Truncate partitionsVCDB$# FOR part IN 1..92VCDB$# LOOPVCDB$# event_partition = ‘TRUNCATE TABLE VPX_EVENT_’ || CAST(part AS TEXT) || ‘ CASCADE …

VmWare vCenter script to reduce /storage/seat size Read More »

Useful PowerShell commands

List AD users that haven’t logged on in 30 days Import-Module activedirectory Get-ADUser -Filter {Enabled -eq $TRUE} -SearchBase $OU -Properties Name,SamAccountName,LastLogonDate | Where {($_.LastLogonDate -lt (Get-Date).AddDays(-30)) -and ($_.LastLogonDate -ne $NULL)} | Sort | Select Name,SamAccountName,LastLogonDate See if a tcp port is open/blocked/closed Test-NetConnection -ComputerName COMPUTER_NAME -Port PORT_NUMBER Set an interface to type public/private/domain Get-NetConnectionProfile Name …

Useful PowerShell commands Read More »