Skip to content

Windows

Anything related to Microsoft Windows.

How To Change The TCP/IP MTU On Windows Server 2016

Over the year’s I’ve had numerous occasions arise when I needed to change the MTU on a Windows based computer.  There are a million reasons why this is needed, such as the following.

  • Windows Servers deployed in an OpenStack environment require the MTU to be decreased to 1454 in order to work correctly with Neutron.
  • DSL very commonly uses a smaller 1492 byte MTU when deployed with PPPoE encapsulation, so performance can be significantly degraded if the router and computers are not decreased to match.
  • VPN connections over DSL and some WIFI networks are notorious for failing unless the MTU is adjusted.

 

What Affect Does MTU Have?

 

Packet size, also known as MTU or Maximum Transmission Unit, is the largest amount of data that can be transferred in one packet at the physical layer (OSI Layer 1) of the network. Ethernet’s default MTU is 1500 bytes without using Jumbo Frames.  For PPPoE the MTU is 1492 and dial-up connections typically used 576 back in the day.

Each transmission unit contains of header and actual data. This data is called the MSS, or Maximum Segment Size.  MSS defines the largest segment of TCP data that can be transmitted in a packet.  In a more summarized manner,

MTU=MSS + TCP & IP headers.

Click Here To Keep Reading!

Hacking In Windows Using Nishang With Windows PowerShell, Like A Boss!

As requested, this is the first post of many I’m doing on “hacking” and “pentesting.”  Many admins aren’t comfortable with Linux, or just want to use convenient Windows-based tools, so that’s what we’re going to do.  We’ll talk about a tool called Nishang, which you can use to do many different pentesting and security auditing techniques, using the Windows PowerShell 3.0.

To get started, you will need to download Nishang.  You can click here to go directly to the GibHub page or click the link below to download the latest version directly.  First, here’s a video the creator of Nishang gave at Defcon 21.

 

Download & Install

 

Click here to download the latest version of Nishang from GibHub (master.zip).

 

Once you’ve downloaded the zip file, extract it, rename the folder to nishang.ps and put it in the root of your c: drive.

 

snag-11-4-2016-3-52-07-pm

 

Open the Windows PowerShell command prompt as Administrator.  On Windows 10, click the start button and type “powershell” then right click and select “Run as Administrator.”

Click Here To Continue Reading!

Do You Have a Reliable IP Scanner Installed? Advanced IP Scanner is Quick & Easy.

Every Network Administrator or Security Administrator should have a few basic tools installed and ready to go at a moments notice.  Advanced IP scanner is a reliable and free network scanner.  It offers complete analysis of your entire LAN, showing live IP addresses and giving you the ability to remotely control systems with RDP and Radmin.  It’s installable or fully portable, so you can keep it in your Dropbox or NextCloud folder for convenient access.

 

Key features of Advanced IP Scanner include:

  • Remote Shutdown (and Wake-on-Lan)
  • MAC address to IP resolution
  • Exportable scan results via CSV
  • Quick access to discovered network shares
  • Remote Control via Radmin & RDP
  • Built-in tools such as SSH, tracert, telnet and ping.

 

Click Here to Keep Reading!

An Open Source, Command-Line App to Download Videos From Youtube & Over 100 Other Sites!

There is a wealth of outstanding content on Youtube and all of the other video sites online. Sometimes I like to download movies for trips, or training videos when I want to cut out distractions.

 

I found the solution; on Github of all places!  Youtube-dl is a simple command line executable you can use to download video quickly, with ease.  It supports hundreds of websites with video content.  Here’s how to use it on Windows.

 

How To Download Videos

 

First, we need to download the latest version of youtube-dl from Github. This link will always produce the latest version of youtube-dl, directly from Github:

 

https://yt-dl.org/downloads/latest/youtube-dl.exe

 

I suggest saving it in your “Videos” folder, located within your user folder.  You can find your user folder on your desktop. It’s the folder with your name.  There is a “Videos” folder already located there, by default.

Click Here To Keep Reading!

Configuring ownCloud 9 & Active Directory / LDAP Plugin Successfully

With this step-by-step guide, you will have your ownCloud 9 (and earlier) cloud server authenticating against Active Directory or LDAP correctly in no time!

Introduction

 

Recently, I went through the process of setting up a brand new ownCloud 9.1 server, after my previous ownCloud server had seen upgrades from 6.x all the way up to 8x.  If you’ve used ownCloud that long, you know the abundant changes and improvements that have been made along the way did not come without their growth pains; especially if you delved into encryption.  So, I decided to start fresh.  I use Active Directory to provide a centralized authentication source for everything in my personal “cloud,” so after setting up my new Dropbox clone, the first thing I needed to do was configure the LDAP user and group backend plugin.  I had a lot of problems getting the Active Directory usernames to match the ownCloud usernames, instead of showing a long string off numbers.  It was a lot of confusing UID, UUID, SAMAccountName and DN related confusion.  There aren’t any great guides to keep you from getting a headache, so I decided to make one.

 

Problems with the LDAP user and group backend plugin

 

It’s pretty straight forward to get an ownCloud server authenticating against and Active Directory server, but the biggest problem I’ve seen is the mapped usernames end up being long strings of numbers in ownCloud.  Although the display names are correct in owncloud, the actual username for all AD mapped logins, by default, are a long unique string makes things difficult.  For one, if you need to get to a users ownCloud data folder, there’s no intuitive way of knowing who’s is who’s folder from the command line.

With this step-by-step guide, you will have your ownCloud server authenticating against Active Directory / LDAP, with the following benefits:

 

  • The ownCloud username will match the Active Directory / LDAP username (no long incomprehensible string of numbers)
  • Any user added to a specified group created in Active Directory will automatically have ownCloud login privileges.
  • ownCloud users will be able to login using their username or email address (if specified in AD) interchangeably.

These three pluses make everything very seemless and saves a lot of headaches. So, lets get started.

Click Here to Continue Reading!

How to run Android apps (apk) using Google Chrome on Windows, OSX, and Linux

Last night I was in a pinch and needed to poke around in an Android app, but I didn’t have an Android phone or tablet with me. So, I started trying to figure out a way to run Android apps, or .APK files, on my Macbook Pro. The solution I found actually works on any desktop or laptop computer running Windows, OSX, or Linux. All you need is Google Chrome. It’s very easy and only takes about 30 seconds to setup. Here’s how to do it.

How to run Android Apps, .APK files, on your PC or MAC

You will only need a few items to do this.

The magic that runs Android apps in Chrome is ARC Welder. This app is developed by Google, and it’s pretty new. There are some compatibility issues with it and apps that require the Google Play store, but they are working through those issues relatively quickly. Let’s go ahead and download the Google ARC Welder app from the Chrome store.

Head over to this link and click “ADD TO CHROME” in the top right-hand corner of the box that pops up.

Click Here To Keep Reading This Post!

How To Add Windows Install Images To WDS (Windows Deployment Services) On Server 2012 R2

If you read my post on “How To Install WDS (Windows Deployment Services) on Windows Server 2012 R2.” you might be at a point where you have a WDS server set up, but you don’t have any Windows images loaded to install anything. Or, you might be having issues adding images to your WDS server. Either way, I’m here to help.

How to add images to WDS

Open up Windows Deployment Services by selecting it from the Tools menu on Server Management.

Screen Shot 2015-05-25 at 8.30.25 PM

If you have an ISO for Windows 7, Windows 8, Server 2008, or Server 2012, you’ll want to extract it using a tool like WinRAR, and move it over to your WDS server or make sure it’s available via a network share. If you are using a physical server and you have a CD ROM, you can put the OS installation CD in the drive as an alternative if you like. I prefer working with images.

There are two files we will need to add your first image. These are.

  • boot.wim – this is the Windows boot image
  • install.wim – this is the actual installation image

Click Here To Read The Entire Post!!