Jordan Borean jborean93

## PowerShell Certificate Signing.md

      
              1 file
            
          
              0 forks
            
          
              0 comments
            
          
              2 stars
            
          
                jborean93
                / PowerShell Certificate Signing.md
            
            
              Last active Jan 5, 2021
            
              
                Behaviour of signed PowerShell scripts
              
          
      View PowerShell Certificate Signing.md
  
    
    PowerShell Code Signing
This is to try and document the behaviour around PowerShell code signing.
Setup
The following code can be used to set up this scenario.
This must be run as an administrator in Windows PowerShell.
Note: PowerShell uses implicit remoting for the New-SelfSignedCertificate which breaks the constains serialization. You must run this on Windows PowerShell.

  
## New-PSSessionLogger.ps1
# Copyright: (c) 2020, Jordan Borean (@jborean93) <jborean93@gmail.com>
# MIT License (see LICENSE or https://opensource.org/licenses/MIT)

Add-Type -TypeDefinition @'
using System;
using System.IO;
using System.IO.Pipes;
using System.Management.Automation;
using System.Management.Automation.Runspaces;
using System.Threading;

## Get-SSHAgentKey.ps1
# Copyright: (c) 2020, Jordan Borean (@jborean93) <jborean93@gmail.com>
# MIT License (see LICENSE or https://opensource.org/licenses/MIT)

Function Find-InArray {
    <#
    .SYNOPSIS
    Finds the index of a byte[] in a byte[].
    #>
    [CmdletBinding()]
    param (

## smb_security_descriptor.py
import smbclient

from smbprotocol.file_info import (
    InfoType,
)

from smbprotocol.open import (
    DirectoryAccessMask,
    FilePipePrinterAccessMask,
    SMB2QueryInfoRequest,

## setup.sh
#!/usr/bin/env bash

set -o pipefail -eu

function create_package {
    name="${1}"
    version="${2}"
    requirements="${3:-}"

    if [ ! -z "${requirements}" ]; then

## New-EXOPSSession.ps1
# Copyright: (c) 2020, Jordan Borean (@jborean93) <jborean93@gmail.com>
# MIT License (see LICENSE or https://opensource.org/licenses/MIT)

#Requires -Module MSAL.PS

Function New-EXOPSSession {
    <#
    .SYNOPSIS
    Will open a PSSession to Exchange Online.

## ConvertFrom-IndirectString.ps1
# Copyright: (c) 2020, Jordan Borean (@jborean93) <jborean93@gmail.com>
# MIT License (see LICENSE or https://opensource.org/licenses/MIT)

Function ConvertFrom-IndirectString {
    <#
    .SYNOPSIS
    Converts a indirect string identifier to the actual string value it represents.

    .PARAMETER IndirectString
    The indirect string that begins with '@' to convert to the proper string value.

## Get-FtpFile.ps1
# Copyright: (c) 2020, Jordan Borean (@jborean93) <jborean93@gmail.com>
# MIT License (see LICENSE or https://opensource.org/licenses/MIT)

Function Get-FtpFile {
    [CmdletBinding()]
    param (
        [Parameter(Mandatory=$true)]
        [System.Uri]
        [Alias('Uri')]
        $FtpUrl,

## Get-WindowsUpdate.ps1
# Copyright: (c) 2020, Jordan Borean (@jborean93) <jborean93@gmail.com>
# MIT License (see LICENSE or https://opensource.org/licenses/MIT)

Function Write-WUAError {
    <#
    .SYNOPSIS
    Convert raw HRESULT codes to a human readable error.

    .PARAMETER Exception
    The COMException that the error code is from.

## runtime_checker.py
#!/usr/bin/env python3

import asyncio
import json
import os
import subprocess
import sys
import tempfile
import yaml
	# Copyright: (c) 2020, Jordan Borean (@jborean93) <jborean93@gmail.com>
	# MIT License (see LICENSE or https://opensource.org/licenses/MIT)

	Add-Type -TypeDefinition @'
	using System;
	using System.IO;
	using System.IO.Pipes;
	using System.Management.Automation;
	using System.Management.Automation.Runspaces;
	using System.Threading;
	# Copyright: (c) 2020, Jordan Borean (@jborean93) <jborean93@gmail.com>
	# MIT License (see LICENSE or https://opensource.org/licenses/MIT)

	Function Find-InArray {
	<#
	.SYNOPSIS
	Finds the index of a byte[] in a byte[].
	#>
	[CmdletBinding()]
	param (
	import smbclient

	from smbprotocol.file_info import (
	InfoType,
	)

	from smbprotocol.open import (
	DirectoryAccessMask,
	FilePipePrinterAccessMask,
	SMB2QueryInfoRequest,
	#!/usr/bin/env bash

	set -o pipefail -eu

	function create_package {
	name="${1}"
	version="${2}"
	requirements="${3:-}"

	if [ ! -z "${requirements}" ]; then
	# Copyright: (c) 2020, Jordan Borean (@jborean93) <jborean93@gmail.com>
	# MIT License (see LICENSE or https://opensource.org/licenses/MIT)

	#Requires -Module MSAL.PS

	Function New-EXOPSSession {
	<#
	.SYNOPSIS
	Will open a PSSession to Exchange Online.
	# Copyright: (c) 2020, Jordan Borean (@jborean93) <jborean93@gmail.com>
	# MIT License (see LICENSE or https://opensource.org/licenses/MIT)

	Function ConvertFrom-IndirectString {
	<#
	.SYNOPSIS
	Converts a indirect string identifier to the actual string value it represents.

	.PARAMETER IndirectString
	The indirect string that begins with '@' to convert to the proper string value.
	# Copyright: (c) 2020, Jordan Borean (@jborean93) <jborean93@gmail.com>
	# MIT License (see LICENSE or https://opensource.org/licenses/MIT)

	Function Get-FtpFile {
	[CmdletBinding()]
	param (
	[Parameter(Mandatory=$true)]
	[System.Uri]
	[Alias('Uri')]
	$FtpUrl,
	# Copyright: (c) 2020, Jordan Borean (@jborean93) <jborean93@gmail.com>
	# MIT License (see LICENSE or https://opensource.org/licenses/MIT)

	Function Write-WUAError {
	<#
	.SYNOPSIS
	Convert raw HRESULT codes to a human readable error.

	.PARAMETER Exception
	The COMException that the error code is from.
	#!/usr/bin/env python3

	import asyncio
	import json
	import os
	import subprocess
	import sys
	import tempfile
	import yaml