Merge pull request #774 from silversword411/develop

Scripts library update
2021-11-02 12:38:06 -07:00 · 2021-11-02 12:38:06 -07:00 · f977d8cca9
parent d56d3dc271 a9aedea2bd
commit f977d8cca9
2 changed files with 11 additions and 6 deletions
--- a/docs/docs/unsupported_scripts.md
+++ b/docs/docs/unsupported_scripts.md
@ -21,6 +21,8 @@ Is NATS (<https://nats.io>). You'll need a TCP forwarder as NATS only talks TCP

 ## Traefikv2

+Offsite Resource: <https://gitlab.com/NiceGuyIT/tactical-goodies/-/tree/main/traefik>
+
 This section will assume that by default Traefik will reverse proxy everything on port 443.

 Here is a basic Traefik config with docker-composer note the file.directory and file.watch are important.
--- a/scripts/Win_Defender_Status_Report.ps1
+++ b/scripts/Win_Defender_Status_Report.ps1
@ -6,6 +6,9 @@
    If a number is provided as a command parameter it will search back that number of days back provided (good for collecting all AV alerts on the computer).
 .EXAMPLE
    Win_Defender_Status_reports.ps1 365
+.NOTES
+    v1 dinger initial release 2021
+    v1.1 bdrayer Adding full message output if items found
 #>

 $param1 = $args[0]
@ -20,7 +23,7 @@ else {

 if (Get-WinEvent -FilterHashtable @{LogName = 'Microsoft-Windows-Windows Defender/Operational'; ID = '1116', '1118', '1015', '1006', '5010', '5012', '5001', '1123'; StartTime = $TimeSpan }) {
    Write-Output "Virus Found or Issue with Defender"
-    Get-WinEvent -FilterHashtable @{LogName = 'Microsoft-Windows-Windows Defender/Operational'; ID = '1116', '1118', '1015', '1006', '5010', '5012', '5001', '1123'; StartTime = $TimeSpan }
+    Get-WinEvent -FilterHashtable @{LogName = 'Microsoft-Windows-Windows Defender/Operational'; ID = '1116', '1118', '1015', '1006', '5010', '5012', '5001', '1123'; StartTime = $TimeSpan } | Format-List TimeCreated, Id, LevelDisplayName, Message
    exit 1
 }