Hardening Archives - Pixel Robots.

AKS

Automatic Azure Kubernetes Service (AKS) node Image updates

Reading Time: 3 minutes If you have been following along with my blog, you may have come across some previous posts about updating Azure Kubernetes Service (AKS). One (https://pixelrobots.co.uk/2019/05/apply-os-updates-to-aks-nodes-without-an-upgrade/) talked about kured (KUbernetes REboot Daemon) by weaveworks https://github.com/weaveworks/kured. The issue with this method is it only supported Linux Kubernetes nodes. So, your windows Kubernetes Read more…

By Pixel Robots., 8 months8 months ago

Security

Using PowerShell To Verify Speculative Execution Side-Channel Vulnerabilities CVE-2017-5754 (MELTDOWN) And CVE-2017-5715 (SPECTRE)

Reading Time: 3 minutes If you are reading this I am sure you are aware of the huge news regarding the security bugs in CPUs from different manufacturers, not just Intel. Luckily Microsoft has been on the ball with this one and have release patches and also a PowerShell Module to the PowerShell Gallery. Read more…

By Pixel Robots., 4 years4 years ago

Azure

Azure Load Balancer For RDP

Reading Time: 4 minutes In this article, I am going to walk through how to setup an Azure Load Balancer to allow you to connect to multiple VM’s using just one public IP address. The benefits of this, are not only the small cost saving but it also gives us better security due to Read more…

By Pixel Robots., 4 years3 years ago

Active Directory

Step by Step guide to Installing Microsoft LAPS

Reading Time: 6 minutes In this blog post, I am going to walk you through how to Install, Configure and use Microsoft LAPS. But first, let’s explain what Microsoft LAPS is. Local Administrator Password Solutions (LAPS) is a solution provided by Microsoft to manage the local administrator account on domain joined computers and servers. Read more…

By Pixel Robots., 5 years ago

Active Directory

GPO Deployed Desktop Shortcuts Deleted After Logon

Reading Time: < 1 minute Recently at work, I have been involved on a project that has used GPO to lock down End User Devices and also deploy shortcuts to the users desktops. As we wanted the shortcuts to display for all users we decided to publish the shortcuts to the public desktop. All was Read more…

By Pixel Robots., 5 years ago

Admin tools

MS15-011: Hardened UNC Path

Reading Time: 2 minutes Recently at work, we have been making sure all our servers are fully patched and have no known vulnerabilities in them. We use a tool called Nessus, that scans the servers for any known vulnerabilities. And they were all coming back saying the needed MS15-011 KB3000483. Our team made sure Read more…

By Pixel Robots., 6 years4 years ago