Hey John! When you say "You all don't want to see that" when talking about Documentation, I say: Nay Nay! Seeing how "Professionals in the wild" deal with documentation and the practices of documenting is important, AND it's interesting!
Keep up the great content! Small tip for everyone watching: Never try to guess the name of a package, or at least do a dry run before running the installation. Typosquatting popular package names has become very popular within some ecosystems.
Awesome videos so far - really like the real-world aspects (looking up commands on Uncle Google).. really really like seeing Server Core and Powershell commands. You make it look easy John ... I'm off to do more admin tasks via powershell now **inspired**
This is a cool video series. It's nice to see you doing something that you're not super familiar with. Or maybe I'm just enjoying watching you try and do something that I'm clearly better then you at. LOL :) But seriously it's easy to watch some of your other great content and think that you're a machine. Sometimes we forget that there's a plethora of different and interesting aspects to IT or the tech field and we all rely on each others expertise to keep the business moving forward. Thanks
Loving this video series so far! The only negative thing I have to say is that there are no links to any of the resources you read/used in the video such as the article you read and even simple things like links to download the software etc, having these in the description would be super helpful.
Hi John, typically we use a windows server as management server because it allows multiple sessions (when you have multiple administrators) and you get tools like server manager preinstalled. However in your case you can install server manager also on a normal windows client. When the domain is sorted and authentication is functioning server manager is really helpful for the gui oriented people to install or remove roles or configure some roles on server core installs
I'm glad this reminded me that the 'core' server edition was something we can use. Just super used to dealing in the GUI in almost all scenarios I've worked with so the sorts of steps to walk through with remote PS and sconfig was awesome to think through it.
28:25 "You guys don't care about this" You don't know how much we care about this! Like so many people who have commented, we WANT to see the REAL action. If it bothers you that much, you can always add the "skip to timestamp_here" to help settle down that feeling and for those who actually don't care. Much love!
Great series, as with all your content. I'm not a big fan of Chocolatey for all the reasons you mentioned, but WIndows now comes with it's own package manager called "winget" which you could have used to install those same applications without having to install chocolatey. Still have to vet the packages you're installing obviously but it works really well and comes pre-installed.
I am currently building up a Windows AD / SMB network with a domain controller, but instead of using PSRemoting I chose to install OpenSSH on the Windows Server because I am using Kali Linux to access that machine. Works fine so far
If you REALLY want to be paranoid, a malicious actor can show you a harmless script when the user agent is a web browser and then send a malicious payload when PS downloads it. Safest way is to download the script, inspect it, and then run that downloaded, inspected script.
Hey John, great video. By the way it would be even more nicer to implement a DNS & DHCP server to the same DC machine or in a dedicated machine. So it will be more realistic. Just configuring a DNS server which will have record for the internal setup and forwarders for any other which are not available inside the environment. Also DHCP will reduce some little steps like entering into domain network and joining it. It’ll directly make the client to recognise the domain and allocates an IP for it. Also, the same DNS server can act as a router for even more cleaner setup.
@@BDBD16 yes it does. But if we have a web server and we assign an url for it. Then a record have to be created , so that the other machines can resolve it. And the same can be made for LBs and others.
I actually had the same issue where it couldn't find the domain. For me (on a Windows 10 client) I noticed that I had two other IPv6 DNS servers it was trying to use, so I had to remove those to fix the issue.
PowerShell is tab complte which helps alot, I think it would be great to show that to your viewers, just type Enter-PSS and hit tab, type get-it and hit tab, etc. and you tab complete arguments as well like enter-pssession -{tabhere to go through all flags}
I cannot get the Copy/Paste to work and I've tried all the 'internet fixes' I think there is definitely a problem with my Windows10 Host / Windows Server 2022. It works fine from Host to Windows 11 workstation. Frustrating to say the least.
A nice to know tool for documentation is the windows building psr.exe. Important Information, edit the maximum recorded steps. This built tool is creating screenshots for every step you make!
i have also problem joining domain but in my case error is "The request is not supported",i have setup evrything like you nut dont know what went wrong
I also tried to install Sublime Text on my newly-created Ubuntu 22.04 VM yesterday using the "sudo apt install sublime-text" command and it did not work, so maybe it's something from their side.
:) where is point of installing “no gui” while all instalations “looks” better and are user friendly to install…. On no rdp nor wingui server windows 😊
I figured it out. If you are having issues with "New-PSSession" and your on virtual box go to devices>network>networksettings>Attached to: Host-only Adapter>In advanced make sure cable is connected.
Looks like it's going to be another great video series, John! Any chance you're going to touch on any automating for labs? I've been thinking about throwing together a Powershell script to create some fake users of varying security levels and fake departments, so I can have a more "real" testing lab for playing around in after I get through the PEH videos.
That is exactly what we are creating in the next video ;) A good portion of this series will be using PowerShell to automatically spin up and tear down a pre-defined (or randomly generated) domain environment so we can practice anything we want
@@_JohnHammond Awesome news! I need to brush up (aka get any real skills at all) my Powershell. A lab sounds like the perfect excuse to tuck in a little.
I have been hearing a lot about Investment with expert angela regina mende, please can you tell me more about her,I'm willing to invest thousands of dollars with her!
Hey John! When you say "You all don't want to see that" when talking about Documentation, I say: Nay Nay! Seeing how "Professionals in the wild" deal with documentation and the practices of documenting is important, AND it's interesting!
I agree but only OpenBSD documentation
True
Actualy… by this you can see that John! is a CSE and not a Graphics/Video Designer, where rhey could cut those “Blupers” ….
That was fun! At school we learnt how to do that using only the GUI. Nice to see it done using the terminal.
Keep up the great content! Small tip for everyone watching: Never try to guess the name of a package, or at least do a dry run before running the installation. Typosquatting popular package names has become very popular within some ecosystems.
Thanks for this comment, I never actually thought about this!!!!
I laughed so hard when you found out the domain controller was turned off. 😂 Thanks for sharing your screen with us.
I was trying to work ahead and literally the same thing happened to me. Then watching him do it I thought oh ok not so bad.
Awesome videos so far - really like the real-world aspects (looking up commands on Uncle Google).. really really like seeing Server Core and Powershell commands. You make it look easy John ... I'm off to do more admin tasks via powershell now **inspired**
This is a cool video series. It's nice to see you doing something that you're not super familiar with. Or maybe I'm just enjoying watching you try and do something that I'm clearly better then you at. LOL :) But seriously it's easy to watch some of your other great content and think that you're a machine. Sometimes we forget that there's a plethora of different and interesting aspects to IT or the tech field and we all rely on each others expertise to keep the business moving forward. Thanks
Thanks John ! Always a pleasure to have you on my screen !
Hey John (and all comment section)!! Loving this series, I am following along and learning quite a lot!
love the series, following on building the same thing in my test environment
John! You make these topics so easy to understand, I appreciate you!
Loving this video series so far!
The only negative thing I have to say is that there are no links to any of the resources you read/used in the video such as the article you read and even simple things like links to download the software etc, having these in the description would be super helpful.
I love that you're doing this command line
In windows 11 you can now use winget to manage packages, it is quite nice and easy to use
OH SHOOT
I COMPLETELY FORGOT WINGET IS A THING NOW
I was just about to mention this! Winget is a great tool!
Hi John, typically we use a windows server as management server because it allows multiple sessions (when you have multiple administrators) and you get tools like server manager preinstalled. However in your case you can install server manager also on a normal windows client. When the domain is sorted and authentication is functioning server manager is really helpful for the gui oriented people to install or remove roles or configure some roles on server core installs
I'm glad this reminded me that the 'core' server edition was something we can use. Just super used to dealing in the GUI in almost all scenarios I've worked with so the sorts of steps to walk through with remote PS and sconfig was awesome to think through it.
Thank you for the clear explanation!
This entire series being free = BANANAS.
John..reminds me of edward snowden but without the leaking docs
Learning about choco was very useful. Hanging out with the smart kids is cooler then I knew in school. ;^)
Brilliant !!! this set of videos are awesome
28:25 "You guys don't care about this" You don't know how much we care about this! Like so many people who have commented, we WANT to see the REAL action. If it bothers you that much, you can always add the "skip to timestamp_here" to help settle down that feeling and for those who actually don't care. Much love!
With Super+Shift+(Left|Rigth) arrows, you can move the current window to the other monitor. Like Linux.
I really love this content! Thanks for everything John
Great series, as with all your content.
I'm not a big fan of Chocolatey for all the reasons you mentioned, but WIndows now comes with it's own package manager called "winget" which you could have used to install those same applications without having to install chocolatey. Still have to vet the packages you're installing obviously but it works really well and comes pre-installed.
Nice Video. In Windows, there are always 100 ways to do something.
I quit vitamin C since I watch your videos, you are sunny
Amazing stuff John
I am currently building up a Windows AD / SMB network with a domain controller, but instead of using PSRemoting I chose to install OpenSSH on the Windows Server because I am using Kali Linux to access that machine.
Works fine so far
If you REALLY want to be paranoid, a malicious actor can show you a harmless script when the user agent is a web browser and then send a malicious payload when PS downloads it. Safest way is to download the script, inspect it, and then run that downloaded, inspected script.
You make me feel so normal when you forget something you just read. Command wise I mean.
Hey John, great video. By the way it would be even more nicer to implement a DNS & DHCP server to the same DC machine or in a dedicated machine. So it will be more realistic. Just configuring a DNS server which will have record for the internal setup and forwarders for any other which are not available inside the environment.
Also DHCP will reduce some little steps like entering into domain network and joining it. It’ll directly make the client to recognise the domain and allocates an IP for it. Also, the same DNS server can act as a router for even more cleaner setup.
Domain Controllers automatically install DNS as it is a REQUIREMENT for a domain....
@@BDBD16 yes it does. But if we have a web server and we assign an url for it. Then a record have to be created , so that the other machines can resolve it. And the same can be made for LBs and others.
quick ping tests help to see if client/servers are up or down
Another fun program from chocolatey is gsudo. It allows you to sudo only specific commands instead of running Windows terminal as administrator
That's it... I'm going to start taking notes on my projects. Heh
I actually had the same issue where it couldn't find the domain. For me (on a Windows 10 client) I noticed that I had two other IPv6 DNS servers it was trying to use, so I had to remove those to fix the issue.
26:00 Trying many times instead of once looking at the documentation? ONE OF US
Your reaction when you you realize the DC is off !!!! XAAXXAXAA
John your my idol dude!
Winget also exists!
PowerShell is tab complte which helps alot, I think it would be great to show that to your viewers, just type Enter-PSS and hit tab, type get-it and hit tab, etc. and you tab complete arguments as well like enter-pssession -{tabhere to go through all flags}
You might want to change the ssh-key so viewers can't push to that repo.
Great video!
Good stuff.
Amazing content!
Please make a course of Red Hat Domain Controller and Red Hat Domain Controller Penetration Testing.
Yes pls
No such thing
19:25 You know windows has an official package manager now called winget try it
THE BEAST HAMMOND
Thanks for you time to helping all of us to learn 🤗👏👏👏👏
I love this content @John Hammond .I do really appreciate you giving out this content for free where else where,you got to pay.Thank you So Much
I had a problem with Enabling PSRemote, and found it the problem, network on client windows 11, should be private, not public
Name your Active Directory Devices like SRV-DC01 SRV-DC02 etc. WST-01 WST-02 (Workstations) and PRT-01 PRT-02... for Printers is a common practice
I cannot get the Copy/Paste to work and I've tried all the 'internet fixes' I think there is definitely a problem with my Windows10 Host / Windows Server 2022. It works fine from Host to Windows 11 workstation. Frustrating to say the least.
A nice to know tool for documentation is the windows building psr.exe. Important Information, edit the maximum recorded steps. This built tool is creating screenshots for every step you make!
Not sure why we needed to manually set dns on workstation to join the domain.
i have also problem joining domain but in my case error is "The request is not supported",i have setup evrything like you nut dont know what went wrong
Did you find a solution? I am having the same issue.
@@benholloway2171 no sir
I'm sure I love you for the same reasons others hate you. Thanks for the great videos.
didn't turn it on... classic - be there done that, got a LOT of teeshirts
I also tried to install Sublime Text on my newly-created Ubuntu 22.04 VM yesterday using the "sudo apt install sublime-text" command and it did not work, so maybe it's something from their side.
:) where is point of installing “no gui” while all instalations “looks” better and are user friendly to install…. On no rdp nor wingui server windows 😊
Wow cool thank you so much
wmic logicaldisk get name to get drives available
This will not work on win 11 home.
19:14 why not winget?
Does this lab work for virtual box? Im having issues but may also be user error.
I figured it out. If you are having issues with "New-PSSession" and your on virtual box go to devices>network>networksettings>Attached to: Host-only Adapter>In advanced make sure cable is connected.
hi i have a problem with my server dns my server dns is in fammily 5 en the windows 10 dns fammily is in 4 and i cant change it
Did you fix it? how? I have a similar issue
Looks like it's going to be another great video series, John!
Any chance you're going to touch on any automating for labs? I've been thinking about throwing together a Powershell script to create some fake users of varying security levels and fake departments, so I can have a more "real" testing lab for playing around in after I get through the PEH videos.
That is exactly what we are creating in the next video ;)
A good portion of this series will be using PowerShell to automatically spin up and tear down a pre-defined (or randomly generated) domain environment so we can practice anything we want
@@_JohnHammond Awesome news! I need to brush up (aka get any real skills at all) my Powershell. A lab sounds like the perfect excuse to tuck in a little.
12:14 Rename-Computer -NewName 'DC1' ???
It's so funny that headless Windows Server installation gives you command line in a window and you can run gui installer 😆
Is this gonna end in some RCE for the DC lol
I want that shirt
I watch you try to join a DC and think to myself.... I don't think the DC is booted after snapshotting it.
hey!! hope you remember me :) I am busy for a while will catch on all your videos soon!!
46:58
My greatest happiness is the $28,000 biweekly profit I earn every week
please how do I go about it, am still a newbie on investment trading.
@@humphriesisabella9355 it's all thanks to Mrs Angela Regina mende,her trading strategies is the best I can think of now
I have been hearing a lot about Investment with expert angela regina mende, please can you tell me more about her,I'm willing to invest thousands of dollars with her!
how does anybody think this is real
Hey guys thanks a lot, you just saved me from crypto loss by recommending such a successful and a legit broker in the United States.
Sorry for that. Join the Domain with no running Domain. Funny. ;)
lol setting up winrm securely(e.g. tcp/5986) is such a pain