So today as I was checking on the update status of all the windows computers the WSUS MMC Console would throw the following error (System.Xml.XmlException — ‘’, hexadecimal value 0x16, is an invalid character). Upon googling this issue I came across a technet article which contained a solution and some improvements on the first provided solution. I will sum it up as follows, this is most likely caused by a computer reporting back information to wsus which contains invalid characters. In the article it was linked back to a DELL BIOS version.
Steps to resolve the issue:
Install the SQL management studio on your WSUS server.
Once installed open up the SQL management studio and connect to the following target: \\.\pipe\MICROSOFT##WID\tsql\query
Open a new query and run the following:
select * from tbComputerTargetDetail a
join tbComputerTarget b on b.TargetID = a.TargetID
where a.ComputerModel like '%' + CHAR(0x16) +'%'
This should report back the computer with the issue for me it is also a DELL laptop and I will have the BIOS updated but for now as a temporary fix I just edited the special character and replaced it with DELL until my co-worker can update the BIOS.
It seems docker and containers are becoming the new default standard for simple, rapid and consistent deployment. I was asked to deploy out open maintenance recently at work and decided to look into the simplest options to deploy it out. I reviewed the open maintenance website and didn’t see any ready made ova images or a simple up to date guide on getting it up and running quickly which lead me to google. I first tried openmaint vm as a search term which lead me to only one result which seemed creditable bitnami which has yet to create an ova or deployment package for it. I then decided to see if someone put together a docker container for it which they did link here. I then decided to see if VMWare can run containers directly, it can but we run 5.5 internally which doesn’t support that feature. I then decided to setup a CentOS box to run the Docker container in our ESXI environment that way.
Continue reading “Open Maintenance – Docker & CentOS 7”
Creating a new users home directory and corresponding DFS namespace target. The script can also force all domain controllers to fully sync up in case you have multiple sites. Sync is enabled by default, however it can be disabled. This powershell script does require WinRM to be enabled for sync to work. You need to have setup the DFS namespace root path already.
Continue reading “Powershell script to create user home directory and DFS namespace target”
I find I need to save C# DataTables to CSV files often and as such use the following code:
Continue reading “C# save DataTable to CSV easily”
These two functions below have saved me a lot of time, you simply create a class with variables inside it and then pass said class to the two functions below:
Continue reading “Easily save and load C# classes using XML Serialization”
I have created nine extractors to get all the Sophos variables I needed to use.
Continue reading “Graylog extractors for Sophos UTM logs”
I setup Graylog to collect all the windows event logs including file event logs on the file servers at work. I noticed that the winlogbeat_event_data_AccessList field was not what the event did rather a %%#### code. I decided to build a pipeline to format the winlogbeat_event_data_AccessList field into a new field I designated as AccessList.
Continue reading “Graylog format AccessList For Windows file events”
PowerShell has a module to assist with this, you can find out all the specifics at https://docs.microsoft.com/en-us/sql/powershell/download-sql-server-ps-module. I was asked to pull data and export it to a CSV to save time, which is easy to do with Task Scheduler and PowerShell. Continue reading “PowerShell exporting data easily from MSSQL into a CSV”
The more I use power shell the more I realize you can do just about anything you could do with visual studio and C#. I haven’t found a comprehensive source for all the little differences between C# and powershell but the following are some things to take note of: Continue reading “PowerShell Tid Bits #1”
I found an issue with Sophos where I was unable to ping from my local network to a public IPv6 address even with the firewall rules in place to allow ICMPv6. The issue is when you enable NAT it enables for both IPv4 and IPv6. You need to create a NAT rule that ensures NAT will not apply to IPv6 and the issue will be resolved. Continue reading “Sophos UTM IPv6 Ping/NAT issue”