Giters

rhymeswithmogul / wannapry-smb1

A proof-of-concept PowerShell script to disable and remove SMB 1.0 from an entire domain: best practice, and extra defense against WannaCry.

Home Page:https://rhymeswithmogul.com/blog/2017-05-17-wannapry-smb1.html

Geek Repo:Geek Repo

Github PK Tool:Github PK Tool

wannacryptwannacryeternalbluewindowswindows-serversmbcifswindows-desktopwindows-10windows10windows8windows7windows-vistawindows-7windows-8windows-8-1windows-server-2016windows-server-2012windows-server-2008

wannapry-smb1

A PowerShell script to disable and remove SMB 1.0 from an entire domain. If you don't rely on this protocol, Microsoft's bloggers recommend you remove it (though it's still enabled by default).

Please don't rely on this to protect your systems from the EternalBlue/WannaCry exploit. Install the official Microsoft security patches. Use this script only as an extra line of defense.

How to run

  1. Log onto a computer, as a user who has administrative rights to all computers on the domain.
  2. Install the Active Directory PowerShell module.
  3. Adjust your execution policy as needed with Set-ExecutionPolicy.
  4. Run this script: .\Remove-SMB1FromDomain.ps1

About

A proof-of-concept PowerShell script to disable and remove SMB 1.0 from an entire domain: best practice, and extra defense against WannaCry.

https://rhymeswithmogul.com/blog/2017-05-17-wannapry-smb1.html

wannacryptwannacryeternalbluewindowswindows-serversmbcifswindows-desktopwindows-10windows10windows8windows7windows-vistawindows-7windows-8windows-8-1windows-server-2016windows-server-2012windows-server-2008

License:GNU General Public License v3.0

Languages

Language:PowerShell 100.0%