Features added in this release were presented during the Black Hat Europe 2019 talk called Exploiting Windows Hello for Business.
Notable Changes
- Implemented checks for weak NGC keys in Active Directory and added the ability to export these public keys to a format understood by the original ROCA detection tool. See the newly released Microsoft Security Advisory ADV190026 for more information on this topic.
- Improved FIDO2 key registration reporting capabilities. Tested with YubiKey, Feitian, eWBM and SoloKeys. Big thanks to @aseigler for major code contribution and valuable feedback!
- Added the Add-ADReplNgcKey cmdlet for NGC key injection through the replication protocol (MS-DRSR).
See the Changelog for a more detailed list of new features.
PowerShell Module
Standalone module for offline installation and for legacy PowerShell versions is attached. See the
Installation Notes before proceeding.
PowerShell Gallery
The PowerShell module is also available on Microsoft's PowerShell Gallery.
Chocolatey
An official Chocolatey package of the DSInternals PowerShell Module is also available.
NuGet Gallery
Official binary packages are available at NuGet Gallery.