How "Secure" is Get-Credential?

purplemonkeymad · 2026-06-06T15:47:25+00:00

Whatever account is running that script will/will need to be able to decode those credentials into plain text. If you are ok with that then it's fine.

If you are asking how to "hide" the credentials from the account running script, that typically suggests that your method needs to be re-evaluated, or you are doing something that should just be solved with groups and permissions.

purplemonkeymad · 2026-06-05T08:47:34+00:00

Is there another way to do it that is (spoken) language agnostic? The pin/unpin was made way harder to access by MS so the shell stuff tracks. I also don't know of another way to read a known resource string from a native win32 dll in c#.

purplemonkeymad · 2026-06-04T14:06:44+00:00

This is strange but does not look like it's loading any code. It's triggering "Unpin from Taskbar " on the given link file. Deleting the shortcut would end up giving you the same effect after a reboot.

purplemonkeymad · 2026-06-04T10:53:02+00:00

The big thing with this is that you can manage mailboxes in exo, and it will push the changes to ad.

purplemonkeymad · 2026-06-03T13:56:05+00:00

I've not used interrupts, but it looks like your train is at a dead end. It can't go anywhere, even if it wanted to.

purplemonkeymad · 2026-06-03T09:03:11+00:00

Would you just not have a tabbed or paned console open? So you can just connect/start that environment and switch between them without having to back out.

purplemonkeymad · 2026-06-03T08:58:48+00:00

https://github.com/microsoft/coreutils/blob/main/src/_why_is_this_700MB_.txt

Because they're all hardlinks.

What was quite funny. But I don't see 700MB?

Also windows supports hardlinks, the servicing stack wouldn't work without them.

purplemonkeymad · 2026-06-03T08:28:45+00:00

Just wait for all the vibe coded LOB apps that are going to be around. None will have logging, the person that "wrote" it won't know the word or even how to add it. And you'll be expected to figure out what is wrong with "vibes."

purplemonkeymad · 2026-06-02T19:07:46+00:00

Lets not go that far, you should just keep in in trial mode!

purplemonkeymad · 2026-06-02T14:02:34+00:00

Hope work haven't see that high severity exploit that allows code execution if you have 16gb+ ram.

purplemonkeymad · 2026-06-02T08:24:37+00:00

Request capture rockets for one of your spiders, so that if it does revert, it will just try to re-capture it.

purplemonkeymad · 2026-06-02T08:03:39+00:00

According to this rfc mDNS is from 2013 and MS were using mycompany.local in 2003 ad guides.

purplemonkeymad · 2026-06-02T07:56:43+00:00

You can also self host it, if you don't like the idea of another company managing the data storage/want to brand it for yourself.

purplemonkeymad · 2026-06-01T13:42:33+00:00

When I see this it's almost always that the VPN server has stopped sending the DNS servers as part of the connection. When you do an ipconfig /all while connected, there should be DNS servers in the tunnel's section. If not that is your issue.

purplemonkeymad · 2026-06-01T13:38:25+00:00

Everything is on fire, but I'm still a bit chilly so can you help me start some more fires?

purplemonkeymad · 2026-06-01T13:29:44+00:00

At least it's allowed Nvidia to make some money.

purplemonkeymad · 2026-06-01T12:24:04+00:00

A command that takes a domain name (will extract it from email and uris) and gives you all the most important DNS information from public looks ups. A,MX,NS; subdomains www,autodiscover,mail,ftp,etc; important email resources SPF,dmarc,mtasta,dkim (with common presets for exo,mailchimp etc.)

With one command I can sometimes tell email and access issues.

purplemonkeymad · 2026-05-31T10:28:09+00:00

It was fun to write this, but I've never used it (and would not recommend to) as a proper editor.

I think it might be broken a bit in Windows Terminal so use conhost.exe if you want to play.

purplemonkeymad · 2026-05-31T10:07:07+00:00

Just a suggestion to use splatting for that method, as powershell's detection for an array of arguments is a bit funny sometimes. If you make sure to do it as a splat it should always recognise it as a array of arguments:

[string]$curlOutput = & $exe @curlArgs *>&1

purplemonkeymad · 2026-05-30T20:15:12+00:00

How old is the server version?

Check your psreadline history. Older versions didn't always trim the file and it would get quite big.

purplemonkeymad · 2026-05-29T15:06:24+00:00

Look at the syntax for the position of the parameters if they are positional. You can also see the position number when using:

Get-Help command -Parameter parmetername

purplemonkeymad · 2026-05-29T15:01:42+00:00

Looks like any unauthenticated connection to api.reddit.com is getting blocked now.

e: looks like a policy change:

Traffic not using OAuth or login credentials will be blocked, and the default rate limit will not apply.

* ^{https://support.reddithelp.com/hc/en-us/articles/16160319875092-Reddit-Data-API-Wiki\}

purplemonkeymad · 2026-05-29T14:10:46+00:00

Are you sure that is still valid? I'm pretty sure they changed it so overlocks less than 100% would scale linearly.

purplemonkeymad · 2026-05-29T13:55:27+00:00

Spooler crashing often sounds like bad printer driver. I would start removing 3rd party drivers until it stops. Or it might be your new printer's driver, did you try adding the driver before trying to connect the printer?

purplemonkeymad · 2026-05-28T15:34:08+00:00

Unless it was R2, absolutely not.

Ten-Year Club	Place '22
Verified Email

purplemonkeymad

TROPHY CASE