I've been an IT pro for higher education since 2007 and a gamer since 1990. This is an index of some projects I've done, mostly PowerShell-based, which I felt are worth sharing.
The majority of my scripting work is done for the purposes of system administration and endpoint management for Engineering IT Shared Services, in the Grainger College of Engineering at the University of Illinois. It focuses on AD, MECM, data gathering and reporting, bulk manipulation, automation of repetitive processes, standardization auditing, and process improvement, with a few custom webtools and integrations thrown in. My GitHub.com username is mmseng, but most of my work is hosted under Engineering IT's university-licensed GitHub.com organization, and attributed to my NetID (mseng3).
I also occasionally dabble in various tools and modding for games I play. This page is dedicated for listing the projects related to my professional career. For a compendium of personal/gaming projects, see code-compendium-personal.
If you wish to contact me about my professional work, and GitHub methods are insufficient, then please use the University's Microsoft Teams or system to do so, either directly or through the PowerShell User Group team. If you can't, then my university email will suffice.
I don't claim that all of the code linked below is perfect; I am mostly self-taught when it comes to PowerShell, and I frequently focus on making things that are immediately useful for case-by-case situations, rather than building a proper PowerShell module ecosystem. In general, the code below is provided mostly as reference material for other IT pros looking for examples of how to interface with various systems, achieve various goals, and for general inspiration.
That being said, I generally try to use the best practices developed through my CS, IT, and security-conscious background. However I'm equally as happy to receive feedback and pointers about my code as I am to receive questions and share my experience.
The majority of my PowerShell code has been developed on v5.1, and has not necessarily been tested on v6 nor v7. However I am using v7 by default now, and try to update or notate code which has issues on versions later than v5.1.
Most of this work has been migrated from my organization's GitLab instance to our GitHub.com university-licensed organization, and has been made public where it makes sense.
In the table below, a visibility of Public means the code is accessible to the whole internet. University means the code is accessible to any member of any organization belonging to University of Illinois' enterprise-wide GitHub license (i.e. basically any university affiliate, this visiblity is called "Internal" in GitHub.com enterprise parlance). Private means the code is still hosted on Engineering IT's GitLab service and/or is only accessible to those specifically granted access.
Note:
- For projects hosted on GitHub with a visibility of "University" (a.k.a. "Internal"), you'll need to authenticate your GitHub account via the university SSO, by browsing here: https://github.com/orgs/engrit-illinois/sso.
- If you are interested in getting access to a non-public project, please contact me per the above.
| Name and link | Description | Type | Language | Visibility |
|---|---|---|---|---|
| how-to-install-a-custom-powershell-module | Brief instructions on installing a custom powershell module. | informational | English, PowerShell | Public |
| how-to-run-custom-powershell-modules-as-another-user | Instructions referenced by several of my custom modules listed below | informational | English, PowerShell | University |
| Get-ClassSize | This is a handy PowerShell module for querying the size of a given UIUC Engineering class. | data gathering/reporting | PowerShell | University |
| Get-LabRDUCount | Returns information about the number of users with the Remote Desktop permission for a given Engineering Instructional lab. | data gathering/reporting | PowerShell | University |
| Recycle-EWSGuestAccounts | Bulk provisioning and decommissioning of guest AD accounts | bulk manipulation, scripting of repetitive processes | PowerShell | University |
| Refresh-EWSRDUGroups | Bulk provisioning and decommissioning of AD security groups used to control remote access to EWS labs | bulk manipulation, scripting of repetitive processes | PowerShell | University |
| Gete-EwsHomeDirInfo | Gathers some handy infomation about the Engineering IT EWS home directory for a given user. | data gathering/reporting | PowerShell | Private |
| create-role-based-ad-accounts-and-groups | Creation of role-based AD accounts and groups, i.e. for administrative use, research groups, and RSOs | bulk manipulation, scripting of repetitive processes | PowerShell | University |
| Create-ICTDocClassAccounts | Bulk creation of guest AD accounts, i.e. for a semesterly community class | Bulk manipulation, scripting of repetitive processes | PowerShell | University |
| post-to-slack | Sends a message to a Slack channel | data gathering/reporting | PowerShell | Public |
| post-to-teams | Sends a message to a MS Teams channel | data gathering/reporting | PowerShell | Public |
| Get-Sessions | Gets session data from remote endpoints, and returns it in a proper PowerShell object | data gathering/reporting | PowerShell | Public |
| get-lens-info | Gathers data about the local endpoint's MAC from LENS data and saves it in MECM task sequence variables | data gathering/reporting | PowerShell | Public |
| Get-LensInfo | Retrieves networking info about a given AD computer from the Lens API, and returns it in a proper PowerShell object. | data gathering/reporting | PowerShell | University |
| Get-LensObject | Module to pull object data from Lens, matching a given query, and return the results in a custom powershell object (or array of objects). Common examples are included. | data gathering/reporting | PowerShell | University |
| Invoke-ConfluenceApiCall | A rudimentary wrapper for making calls to the Confluence Cloud REST API. | data gathering/reporting, bulk manipulation, scripting of competitive processes | PowerShell | University |
| Get-ComputersBySessionState | Gets a list of computers which have sessions matching given criteria | data gathering/reporting | PowerShell | Public |
| Get-Model | This script reports various inventory-related info from a list of remote computers by polling them asynchronously. | data gathering/reporting | PowerShell | Public |
| Get-MachineInfo | Gets model and other info (WMI Win32_ComputerSystem class) from remote endpoints | data gathering/reporting | PowerShell | Public |
| Get-ScheduledTaskLike | Gathers all scheduled tasks matching the given name query, from all AD computers matching the given name queries, and exports relevant data about them to a CSV. | data gathering/reporting | PowerShell | Public |
| Get-DiskSpace | Gets available and free disk space from remote endpoints, caluclates free space %, and highlights endpoints with low free space | data gathering/reporting | PowerShell | Public |
| Get-MissingDrivers | This script asynchronously polls an array of computers and reports whether they have any devices with missing or problematic drivers. | data gathering/reporting | PowerShell | Public |
| Get-LocalUserProfiles | Pulls information about local user profiles from a given array of computers. | auditing, data gathering/reporting | PowerShell | Public |
| Remove-LocalUserProfiles | Removes local user profiles from a given array of remote computers. | bulk manipulation, scripting of repetitive processes | PowerShell | Public |
| Get-UptimeHistory | Retrieves precise uptime history from a remote endpoint | data gathering/reporting | PowerShell | Public |
| Get-FormFactors | Gets form factor and other info (WMI Win32_SystemEnclosure and Win32_ComputerSystem classes) from remote endpoints | data gathering/reporting | PowerShell | Public |
| Set-RemoteService | A simplified wrapper for the Set-Service cmdlet for changing the Status and StartType of services on remote machines. | bulk manupulation | PowerShell | Public |
| win7-esu-mecm-baseline | A script to be used as a configuration item for a MECM baseline which detects systems with valid Win7 ESUs | data gathering/reporting | PowerShell | Public |
| Get-OuLoginMessage | Polls computers in an OU and returns whether they have a login message configured locally. | data gathering/reporting | PowerShell | Private |
| misc-handy-powershell-examples | Long list of misc syntax, cmdlets, and snippets I've found handy over the years | misc | PowerShell | Public |
| handy-log-functions | Some handy, feature-rich log functions for use in PowerShell modules. | utility | PowerShell | Public |
| Get-PsVersion | A hacky PowerShell function to get the PowerShell version of a remote machine. | data gathering/reporting | PowerShell | Public |
| org-shared-mecm-deployments | Standardization of MECM collections and deployments across the college | standardization auditing, bulk manipulation, scripting of repetitive processes | PowerShell | Public |
| Report-UnnecessaryDirectDeployments | A module to list all deployments which are technically duplicates of existing org-level deployments, and thus could be assimilated. | data gathering/reporting, auditing | PowerShell | Public |
| Get-MacsFromSmsPxeLog | Reads SMSPXE.log from one or more given DFS paths, and pulls out just the MACs, to help identify bootlooping machines. | data gathering/reporting | PowerShell | Public |
| Audit-StaleADComputersInOU | Auditing of "stale" AD computer accounts, and bulk remediation | standardization auditing, bulk manipulation, scripting of repetitive processes | PowerShell | Public |
| Audit-MisconfiguredGpos | A script to find GPOs which have no links, or have other potentially undesirable configurations. | data gathering/reporting, auditing | PowerShell | Public |
| Get-GpoContainingSetting | Searches GPOs in the given domain and returns those which have names matching a given string, and which contain text in their XML or HTML exports matching a given string. | data gathering/reporting, auditing | PowerShell | Public |
| bcdedit-revert-uefi-gpt-boot-order | Automating the correction of Windows UEFI boot order after installation of Windows modifies it | scripting of repetitive processes | PowerShell | Public |
| get-oudn-and-desc-of-existing-ad-object-and-delete | Script for an MECM Task Sequence which retrieves the OUDN and Description of the computer's AD object, saves them to a TS variable for later use, and then deletes the AD object. | automation | PowerShell | University |
| Prep-MECM | Prepares a connection to MECM so cmdlets from the ConfigurationManager PowerShell module can be used. | utility, scripting of repetitive processes | PowerShell | University |
| Get-CMAppDepTypeData | Script to gather local application deployment type data from remote machines to identify widespread issues | auditing, data gathering/reporting | PowerShell | Public |
| Compare-AssignmentRevisions | Collects MECM client data directly from mass endpoints for analysis to identify issues related to deployment bugs in MECM | auditing, data gathering/reporting | PowerShell | Public |
| Get-AppSupersedence | Analyzes data from MECM to identify mis-configured application packages, which cause deployment issues | auditing, data gathering/reporting | PowerShell | Public |
| Invoke-TaskSequence | Triggers an MECM Task Sequence on one or more remote computers by communicating directly with their MECM client. | automation | PowerShell | Public |
| Get-CMAppFromContentId | Tries to find the name of the MECM application package associated with a given Content ID. | data gathering/reporting | PowerShell | University |
| Get-DeploymentReport | Polls SCCM for information about all deployments and exports to a CSV | auditing, data gathering/reporting | PowerShell | Public |
| Get-CMCollectionMembersWithAdOus | Returns all MECM devices in matching collections along with their resource information, including their parent Active Directory OU. | data gathering/reporting | PowerShell | University |
| Rename-LabOuAndUpdateMecmCollection | Renames an OU and updates the relevant MECM collection membership query rule | scripting of repetitive processes | PowerShell | Private |
| Get-CMOrgModelLatestDeploymentChanges | Returns relevant information about the latest membership change time and modification dates of relevant MECM deployment collections. | auditing, data gathering/reporting | PowerShell | Public |
| Invoke-CCTK | Module for running CCTK commands on one or more remote Dell computers. | scripting of repetitive processes | PowerShell | Private |
| Validate-OfficeBaselineResults | Verifies accuracy of MECM baseline compliance for baselines used to mitigate CVE-2023-23397, and documents gotchas. | auditing, data gathering/reporting, scripting of repetitive processes | PowerShell | University |
| count-ad-objects | Identify whether a computer already exists in AD for the purposes of using logic in an MECM task sequence | validation | PowerShell | Public |
| Covidize-LabOU | Automation of refactoring AD OUs and GPOs to facilitate segregated remote access for COVID remote work purposes | scripting of repetitive processes | PowerShell | Public |
| Get-MembershipOfGroupsInOU | This script outputs a CSV file reporting the members of all AD groups found within a given OU. | data gathering/reporting | PowerShell | Public |
| Get-ADOUStructureObject | Takes an OU and returns an object containing all data about the OU and it's sub-OUs and child objects, retaining the OU structure. Optionally writes curated data to a file. | data gathering/reporting | PowerShell | Public |
| Get-AdUserGroupMembershipTree | Returns data representing all the AD groups a given user belongs to, flattened into an array, but retaining information about whether membership in the groups are direct, nested, or both. | auditing, data gathering/reporting | PowerShell | Public |
| Remove-AdGroupMemberships | A script to remove AD users from AD groups, based on given memberships. | bulk manipulation, scripting of repetitive processes | PowerShell | Public |
| Add-AdGroupMemberships | A script to add AD users to AD groups, based on given memberships. | bulk manipulation, scripting of repetitive processes | PowerShell | Public |
| Get-RdcmanFileForOu | Outputs an RDG file (for use with RDCMan) with a group structure mimicking the OU structure in a given AD OU. | utility, workaround, scripting of repetitive processes | PowerShell | Public |
| force-mecm-baseline-evaluation | Force a list of remote MECM client to re-evaluate their configuration baselines | workaround | PowerShell | Public |
| force-software-center-assignment-evaluation | Force the local MECM client (or a list of remote MECM clients) to re-evaluate assignments. Credit goes to UIUC Endpoint Services (EPS) team. | workaround | PowerShell | Public |
| Get-CobblerSystems | Retrieve all Linux system information from Cobbler instance | data gathering/reporting | PowerShell | University |
| Export-LabtrackData | Retrieve all Windows and Linux system information regarding lab computers from AD and Cobbler and exports to CSV for use in updating the Engineering Labtrack webtool | data gathering/reporting | PowerShell | University |
| Get-MecmCollegePrefixes | Retrieve all college computer name prefixes used by your "All Systems" collection to determine which newly imported computer objects to include | data gathering/reporting | PowerShell | University |
| remove-pre-2021-autodesk-shortcuts | This script blows away all autodesk product shortcuts it can find, except for the 2021 versions | bulk manipulation, workaround | PowerShell | Public |
| msi-app-uninstall | Uninstall MSI-based apps. Designed primarily to blow away BigFix/IEM client installations on endpoints. | scripting of repetitive processes | PowerShell | Public |
| New-IpamHostRecord | Module for adding a host record to IPAM via the Infoblox WAPI to help with adding multiple records at a time without using the slow web UI, or the convoluted CSV import functionality. | bulk manipulation, scripting of repetitive processes | PowerShell | University |
| Set-IpamHostRecord | Module for modifying host records in IPAM via the Infoblox WAPI to help with editing multiple records at a time without using the slow web UI, or the convoluted CSV import functionality. | type | Language | Visibility |
| Get-IpamIpv4MacFilterEntry | Script to check whether there is an entry in the given Infoblox IPv4 MAC filter matching the given criteria. | data gathering/reporting | PowerShell | University |
| Add-MacToIpamIpv4MacFilter | Module to add a MAC entry to an IPv4 MAC filter via the Infoblox web API. | scripting of repetitive tasks | PowerShell | University |
| Ping-All | Asynchronously ping multiple computers. Useful for instantaneously checking the availability of all computers in a given lab | scripting of repetitive processes, data gathering/reporting | PowerShell | Public |
| Ping-OverTime | Ping a machine continuously, logging when it stops and starts responding. Useful for monitoring up/down status during operations which require reboots | scripting of repetitive processes, data gathering/reporting | PowerShell | Public |
| GpUpdate-Computer | Custom module for silently and asynchronously running gpupdate /force on one or more remote computers. |
scripting of repetitive processes | PowerShell | Public |
| Test-DclLabIps | Quick function to ping the machines in DCL-L416 and DCL-L440 at their AD DNS and regular DNS hostnames, for both their EWS and CBTF builds. | data gathering/reporting | PowerShell | Private |
| Report-AMTStatus | Gathers AMT state information from endpoints | scripting of repetitive processes, data gathering/reporting | PowerShell | Public |
| Report-ProductVersion | Directly polls endpoints to identify where certain applications are installed, and what the installed version is | data gathering/reporting | PowerShell | Public |
| Validate-Win7ESUCompat | Auditing readiness of Win7 systems to accept Extended Service Updates (ESUs) | validation, data gathering/reporting | PowerShell | Public |
| powershell-profile-example | Example of useful code for a powershell profile (specifically stuff I use in mine) | misc | PowerShell | University |
| Export-PrintServerPrinters | Grabs printer data from our print servers, and dumps it to a CSV format, suitable for consumption by my Engineering PrinterStatus webtool (mentioned below). | automation, data gathering/reporting | PowerShell | University |
| PrinterStatus | One-stop-shop web-based status monitoring (leveraging the SNMP protocol) for all of the college's printers | webtool, data gathering/reporting, workflow | PHP, PowerShell | Private |
| PWResetV2 | Resetting of administrator account passwords as securely as possible without leveraging something like LAPS. Contact for more information. | scripting of repetitive processes | PowerShell | Private |
| Helptools Importer | Web-based tool (leveraging Jenkins) for automation of importing new computer information to AD, MECM, and IPAM | webtool, automation, workflow | PowerShell, Jenkins, CSS, Groovy | Private |
| excel-notes | Just a repository for some handy excel tricks, mostly related to data munging. | data gathering/reporting | Excel | Public |
Generalized topics which I have at least some experience with, but which don't represent specific code projects
- Misc gathering, reporting, and manipulation of AD, MECM, LENS, and IPAM data
- Using custom GUI input prompts and logic at the beginning of an MECM task sequence
- Kicking off custom scripts after an MECM task sequence has finished and rebooted, to do things that cannot be done during a TS (such as running Windows updates)
- Automation of AMT commands to endpoints via Intel's IntelvPro PowerShell module
- Quick functions for various handy, quick and dirty administrative tasks
- Customization of PowerShell profile, with automatic import of various modules, such as those mentioned above
- General practice of thorough process logging for scripts for easy troubleshooting and review
- By mseng3