Microsoft

Scripts and tools for use with Microsoft products/technologies

Other scripts I have written but are available elsewhere include:

Process created watcher.ps1 - Gets Windows Management Instrumentation (WMI) notifications for new process creations via the WqlEventQuery class available in the .NET Framework. These are used to show what processes are created and when. The benefits of this approach include:

Low overhead/resource usage
No prerequisites, such as enabling process creation and command line auditing
Easily remoted
No elevation required (scenario dependent)

https://www.parallels.com/blogs/ras/process-created-watcher-script/

Name		Name	Last commit message	Last commit date
Latest commit History 229 Commits
.github		.github
32 versus 64 bit system exes.ps1		32 versus 64 bit system exes.ps1
Add PowerShell to WinPE.ps1		Add PowerShell to WinPE.ps1
Add computers to perfmon xml.ps1		Add computers to perfmon xml.ps1
Add firewall rules for dynamic SQL ports.ps1		Add firewall rules for dynamic SQL ports.ps1
Analyse IIS log files.ps1		Analyse IIS log files.ps1
Autorun.ps1		Autorun.ps1
Bincoder GUI.ps1		Bincoder GUI.ps1
CertGen.ps1		CertGen.ps1
Change CPU priorities.ps1		Change CPU priorities.ps1
Change service dependencies.ps1		Change service dependencies.ps1
Check AD account expiry.ps1		Check AD account expiry.ps1
Check DC spooler.ps1		Check DC spooler.ps1
Check Outlook recipient domains.txt		Check Outlook recipient domains.txt
Check SQL account expiry.ps1		Check SQL account expiry.ps1
Check Skype signed in.ps1		Check Skype signed in.ps1
Check and fix domain membership.ps1		Check and fix domain membership.ps1
Check and start processes.ps1		Check and start processes.ps1
Clone VHD.ps1		Clone VHD.ps1
Convert graphics files.ps1		Convert graphics files.ps1
Delete profile for group member.ps1		Delete profile for group member.ps1
Device Hierarchy.ps1		Device Hierarchy.ps1
Download and Install Office 365 via ODT.ps1		Download and Install Office 365 via ODT.ps1
Dummy Application.msi		Dummy Application.msi
Dynamic Action Menu.json		Dynamic Action Menu.json
Dynamic Action Menu.ps1		Dynamic Action Menu.ps1
Excel Formatting Macro.txt		Excel Formatting Macro.txt
File System Filter Driver Info.ps1		File System Filter Driver Info.ps1
Find Outlook drafts.ps1		Find Outlook drafts.ps1
Find and check IIS server certs.ps1		Find and check IIS server certs.ps1
Find loaded modules.ps1		Find loaded modules.ps1
Fix Sysprep Appx errors.ps1		Fix Sysprep Appx errors.ps1
Fix reminders.txt		Fix reminders.txt
Fix shortcuts.ps1		Fix shortcuts.ps1
Get Account Lockout details.ps1		Get Account Lockout details.ps1
Get Extended File Properties.ps1		Get Extended File Properties.ps1
Get MSI Properties.ps1		Get MSI Properties.ps1
Get Process Durations.ps1		Get Process Durations.ps1
Get Process Relatives.ps1		Get Process Relatives.ps1
Get Remote User Logon Times.ps1		Get Remote User Logon Times.ps1
Get file bitness.ps1		Get file bitness.ps1
Get files modified since boot.ps1		Get files modified since boot.ps1
Get info via CIM.ps1		Get info via CIM.ps1
Get installed software.ps1		Get installed software.ps1
Get window info.ps1		Get window info.ps1
Get window under cursor.ps1		Get window under cursor.ps1
Get-NTFSLongOrShortName.ps1		Get-NTFSLongOrShortName.ps1
Group Membership Modifier.ps1		Group Membership Modifier.ps1
Hash string.ps1		Hash string.ps1
Kill elevated processes.ps1		Kill elevated processes.ps1
LICENSE		LICENSE
Make MessageBox exe.ps1		Make MessageBox exe.ps1
Monitor process start stop.ps1		Monitor process start stop.ps1
Multiple runspaces demo.ps1		Multiple runspaces demo.ps1
Network Profile Actioner.ps1		Network Profile Actioner.ps1
Network listener.ps1		Network listener.ps1
Network sender.ps1		Network sender.ps1
Open Snagit snagx files.ps1		Open Snagit snagx files.ps1
Outlook Leecher.ps1		Outlook Leecher.ps1
OutputDebugString.ps1		OutputDebugString.ps1
Pause Resume Processes.ps1		Pause Resume Processes.ps1
Power Watcher.ps1		Power Watcher.ps1
Process Lifetime CPU percentage.ps1		Process Lifetime CPU percentage.ps1
Process Pending File Rename Operations.ps1		Process Pending File Rename Operations.ps1
Process pause resume.ps1		Process pause resume.ps1
Profile Cleaner.ps1		Profile Cleaner.ps1
Profile.ps1		Profile.ps1
README.md		README.md
Redirect Folders.ps1		Redirect Folders.ps1
Send To Show Folders.ps1		Send To Show Folders.ps1
Send to Clipboard.ps1		Send to Clipboard.ps1
Send to Title Case.ps1		Send to Title Case.ps1
SendTo Clipboard as File.ps1		SendTo Clipboard as File.ps1
Set Foreground Window.ps1		Set Foreground Window.ps1
Set Key Owner.ps1		Set Key Owner.ps1
Set window.ps1		Set window.ps1
Shell Core Phases.ps1		Shell Core Phases.ps1
Show FSlogix volumes.ps1		Show FSlogix volumes.ps1
Show NTFS zone info.ps1		Show NTFS zone info.ps1
Show users.ps1		Show users.ps1
Signer.ps1		Signer.ps1
Sleep macro.xlsm		Sleep macro.xlsm
Speak.ps1		Speak.ps1
Trim run history.ps1		Trim run history.ps1
Trimmer.ps1		Trimmer.ps1
WTSApi.ps1		WTSApi.ps1
Window Helper Functions.ps1		Window Helper Functions.ps1
Windows Updater.ps1		Windows Updater.ps1
admx2csv.ps1		admx2csv.ps1
bginfo wmi network.bgi		bginfo wmi network.bgi
cimfs.ps1		cimfs.ps1
event aggregator.ps1		event aggregator.ps1
guyrleech.sysvol.admx.csv		guyrleech.sysvol.admx.csv
ifeo tiworker & mrt low priority.reg		ifeo tiworker & mrt low priority.reg
powershell auditing.reg		powershell auditing.reg
powershell transcripting policies.reg		powershell transcripting policies.reg
protocolhandler.ps1		protocolhandler.ps1
reg watcher.ps1		reg watcher.ps1
totsclient.ps1		totsclient.ps1
wcrasher.cs.ps1		wcrasher.cs.ps1

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Uh oh!

Repository files navigation

Microsoft

About

Uh oh!

Releases

Sponsor this project

Uh oh!

Packages

Uh oh!

Languages

Uh oh!

License

guyrleech/Microsoft

Folders and files

Latest commit

History

Repository files navigation

Microsoft

About

Resources

License

Uh oh!

Stars

Watchers

Forks

Releases

Sponsor this project

Uh oh!

Packages 0

Uh oh!

Languages

Packages