ERROR_SXS_ASSEMBLY_MISSING (0x80073701) on Windows Server 2019

Update 2024-02-28 From Nate in the comments: If you find the script is not solving the problem for you, purge the contents of C:\Windows\Logs\CBS\, reboot and try running the script again. Original Article We’ve run into a strange problem with our Windows Server 2019 VMs where sometimes when we clone a new VM from our … Read more

Script for detecting potentially vulnerable Log4j jars [CVE-2021-44228] on Windows Server

Update 2021-12-18 – This looks like a much more competent script for detecting this vulnerability and there is a python version for Linux: https://github.com/CERTCC/CVE-2021-44228_scanner Updated 2021-12-17 – Script is v1.4 and looks for .war files now too Original post below Inspired by the one-liner here: https://gist.github.com/Neo23x0/e4c8b03ff8cdf1fa63b7d15db6e3860b#find-vulnerable-software-windows I wrote a script to expand on the command, … Read more

List/Audit all folder delegate permissions on an Exchange mailbox

We recently needed a way to see what delegate permissions a client had given across the vastness that is their mailbox and it’s folder structure. Digging around online I found this script from John Hopkins which got me 90% of the way there. Their script was missing three things for my use case: Delegate permissions … Read more

Script to sync Domain Controller SSL Certificates to a specific host

We have an application that uses LDAP over SSL to authenticate users via Active Directory. The server running the application is a member of the domain and has the domains Root CA installed in it’s local certificate store. Technically the Root CA should be good enough for the server and any applications on it to … Read more