Kyle Metzer

AD Admins Changed Audit

Must be run on a domain controller. Compares Domain Admins to the last time script was run and reports result to the procedure log. Sends alert if admin is added or admin account is enabled. Can report using $ADAdmins$

Read More

Local Admins Changed Audit

Compares Administrator accounts to the last time script was run and reports result to the procedure log. Sends alert if admin is added or admin account is enabled. Can report using $LocalAdmins$

Read More

PrintNightmare – enable Print Spooler service

Enables Print Spooler, which will not protect against PrintNightmare.

Read More

PrintNightmare – disable Print Spooler service

Disables Print Spooler, which will protect against PrintNightmare.

Read More

PrintNightmare – ACL unlock

Removes ACL change in the ‘PrintNightmare – ACL lock’ script.

Read More

PrintNightmare – ACL lock

Changes ACL to prevent any printer modifications. This protects against PrinterNightmare, but must be reverted to make any changes to printers.

Read More

Drive Health Status

Uses CrystalDiskInfo to generate a drive report and parses the report for health status of Drives. MUST create custom field "CF – Drive Type" before importing, or link it on line 29. Can report using tag $DiskInfo$

Read More

Windows 10 Taskbar weather and news feeds (disable)

Sets registry key to disable the "Enable news and interests on the taskbar" local group policy setting.

Read More

Windows 10 Taskbar weather and news feeds (enable)

Removes registry key to disable the "Enable news and interests on the taskbar" local group policy setting.

Read More

Windows 10 Builds and Updates

This includes a large folder of script that modify Local Group Policy through registry keys as well as the Office 365 auto update settings. The LGP settings these scripts change include: Windows Update for Business Configure Automatic Updates Turn off auto-restart for updates during active hours Do not include drivers with Windows Updates Display Options…

Read More