{"id":34510209,"url":"https://github.com/brazilianscriptguy/windows-sysadmin-prosuite","last_synced_at":"2026-05-25T06:09:55.047Z","repository":{"id":213707550,"uuid":"734734417","full_name":"brazilianscriptguy/Windows-SysAdmin-ProSuite","owner":"brazilianscriptguy","description":"Enterprise PowerShell \u0026 VBScript suite for Active Directory automation, ITSM-aligned provisioning, security hardening, and digital forensics - built for Windows Server and workstation environments by a Senior IAM Analyst with a focus on accuracy, scalability, and compliance.","archived":false,"fork":false,"pushed_at":"2026-04-27T03:48:20.000Z","size":26449,"stargazers_count":36,"open_issues_count":0,"forks_count":3,"subscribers_count":1,"default_branch":"main","last_synced_at":"2026-04-27T05:29:24.733Z","etag":null,"topics":["active-directory","active-directory-domain-services","activedirectoryapi","admin-tools","blueteam","eventlogs","evtx-analisys","forensics-tools","gpo-policy-security","itsm","itsm-solutions","ldap-authentication-backend","organizational-units","sysadmin","sysadmin-scripts","sysadmin-tasks","sysadmin-tool","windows-server-2019","workstations","wsus-maintenance"],"latest_commit_sha":null,"homepage":"https://www.linkedin.com/in/brazilianscriptguy/","language":"PowerShell","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/brazilianscriptguy.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":".github/CONTRIBUTING.md","funding":".github/FUNDING.yml","license":"LICENSE.txt","code_of_conduct":".github/CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":"CITATION.cff","codeowners":null,"security":".github/SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null},"funding":{"patreon":"brazilianscriptguy","custom":["https://www.buymeacoffee.com/brazilianscriptguy","https://ko-fi.com/brazilianscriptguy","https://www.gofundme.com/f/brazilianscriptguy"]}},"created_at":"2023-12-22T13:19:10.000Z","updated_at":"2026-04-26T05:21:18.000Z","dependencies_parsed_at":"2024-03-14T12:52:23.543Z","dependency_job_id":"692ddd08-014d-46bd-90f8-adf592dbbcdc","html_url":"https://github.com/brazilianscriptguy/Windows-SysAdmin-ProSuite","commit_stats":null,"previous_names":["brazilianscriptguy/powershell-windowsserver-administrators","brazilianscriptguy/powershell-windows-server-administrators","brazilianscriptguy/powershell-codes-for-windows-server-administrators","brazilianscriptguy/windows-sysadmin-prosuite"],"tags_count":1644,"template":true,"template_full_name":null,"purl":"pkg:github/brazilianscriptguy/Windows-SysAdmin-ProSuite","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/brazilianscriptguy%2FWindows-SysAdmin-ProSuite","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/brazilianscriptguy%2FWindows-SysAdmin-ProSuite/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/brazilianscriptguy%2FWindows-SysAdmin-ProSuite/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/brazilianscriptguy%2FWindows-SysAdmin-ProSuite/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/brazilianscriptguy","download_url":"https://codeload.github.com/brazilianscriptguy/Windows-SysAdmin-ProSuite/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/brazilianscriptguy%2FWindows-SysAdmin-ProSuite/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":32595219,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-03T22:12:39.696Z","status":"online","status_checked_at":"2026-05-04T02:00:06.625Z","response_time":58,"last_error":null,"robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":true,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["active-directory","active-directory-domain-services","activedirectoryapi","admin-tools","blueteam","eventlogs","evtx-analisys","forensics-tools","gpo-policy-security","itsm","itsm-solutions","ldap-authentication-backend","organizational-units","sysadmin","sysadmin-scripts","sysadmin-tasks","sysadmin-tool","windows-server-2019","workstations","wsus-maintenance"],"created_at":"2025-12-24T03:56:52.324Z","updated_at":"2026-05-04T05:04:47.287Z","avatar_url":"https://github.com/brazilianscriptguy.png","language":"PowerShell","funding_links":["https://patreon.com/brazilianscriptguy","https://www.buymeacoffee.com/brazilianscriptguy","https://ko-fi.com/brazilianscriptguy","https://www.gofundme.com/f/brazilianscriptguy","https://www.patreon.com/brazilianscriptguy","https://buymeacoffee.com/brazilianscriptguy"],"categories":[],"sub_categories":[],"readme":"# Windows-SysAdmin-ProSuite — v1.8.8\n\n### DOI: [10.5281/zenodo.18487320](https://doi.org/10.5281/zenodo.18487320)\n\n[![GitHub Repo](https://img.shields.io/badge/GitHub-Windows--SysAdmin--ProSuite-181717?style=for-the-badge\u0026logo=github)](https://github.com/brazilianscriptguy/Windows-SysAdmin-ProSuite) [![PowerShell](https://img.shields.io/badge/PowerShell-5.1%20%7C%207.x-5391FE?style=for-the-badge\u0026logo=powershell\u0026logoColor=white)](#) [ ![Windows](https://img.shields.io/badge/Windows-Server%20%7C%2010%20%7C%2011-0078D6?style=for-the-badge\u0026logo=windows\u0026logoColor=white)](#) [![License](https://img.shields.io/badge/License-MIT-green?style=for-the-badge\u0026logo=open-source-initiative)](LICENSE.txt) [![CI](https://img.shields.io/badge/CI-GitHub%20Actions-2088FF?style=for-the-badge\u0026logo=githubactions)](https://github.com/brazilianscriptguy/Windows-SysAdmin-ProSuite/actions)\n[![SARIF](https://img.shields.io/badge/SARIF-Code%20Scanning-brightgreen?style=for-the-badge\u0026logo=github)](https://github.com/brazilianscriptguy/Windows-SysAdmin-ProSuite/security/code-scanning) [![DOI](https://img.shields.io/badge/DOI-10.5281%2Fzenodo.18487320-blue?style=for-the-badge\u0026logo=zenodo)](https://doi.org/10.5281/zenodo.18487320)\n\n---\n\n## 🧭 Overview\n\n**Windows-SysAdmin-ProSuite** is an enterprise-grade, research-aligned automation platform for Windows Server and workstation environments — authored by **Luiz Hamilton Silva ([@brazilianscriptguy](https://github.com/brazilianscriptguy))**, Senior IAM Analyst, Windows Server Architect, and published researcher in digital forensics and cybersecurity.\n\nBuilt around **production-tested PowerShell and VBScript toolchains**, the suite addresses five core operational pillars:\n\n| Pillar | Scope |\n|--------|-------|\n| 🔐 Identity \u0026 Access Management | AD lifecycle, LDAP/SSO, credential hygiene |\n| 🖥️ ITSM-Aligned Provisioning | Standardized workstation and server onboarding |\n| 🛡️ Cybersecurity \u0026 Hardening | GPO enforcement, baseline templates, drift remediation |\n| 🔬 Digital Forensics \u0026 DFIR | EVTX parsing, event correlation, incident response |\n| 📋 Operational Auditability | Structured `.log` outputs, `.csv` exports, traceable execution |\n\n\u003e All tooling enforces **runtime safety**, **deterministic logging**, and **PowerShell 5.1 compatibility** as non-negotiable requirements.\n\n---\n\n## 🎯 Who This Is For\n\nThis is **not** a collection of demos or one-off scripts. It is a cohesive automation suite built for production use across:\n\n| Environment | Primary Use Case |\n|---|---|\n| 🏛️ Public sector \u0026 judicial institutions | Compliance-driven provisioning and audit trails |\n| 🏢 Enterprise \u0026 hybrid infrastructures | AD, WSUS, DNS, DHCP, PKI, RDS at scale |\n| 🛡️ Blue Team / DFIR operations | Threat hunting, event log analysis, forensic collection |\n| 📋 Governance, risk \u0026 compliance teams | GPO enforcement, ITSM-aligned change management |\n| 🎓 Academic \u0026 research environments | Citeable tooling grounded in peer-reviewed methodology |\n\n---\n\n## 📦 Suite Modules\n\nEight specialized modules — each independently usable, collectively cohesive.\n\n| Module | Purpose | Key Capabilities |\n|--------|---------|--------------------|\n| [![SysAdmin-Tools](https://img.shields.io/badge/SysAdmin--Tools-Automation-0078D6?style=flat-square\u0026logo=microsoft\u0026logoColor=white)](https://github.com/brazilianscriptguy/Windows-SysAdmin-ProSuite/tree/main/SysAdmin-Tools) | PowerShell toolset for **Windows Server, AD, network services \u0026 WSUS**. | AD \u0026 OU lifecycle · GPO enforcement · WSUS \u0026 SUSDB · DNS, DHCP, CA, RDS |\n| [![BlueTeam-Tools](https://img.shields.io/badge/BlueTeam--Tools-DFIR-E05C00?style=flat-square\u0026logo=protonmail\u0026logoColor=white)](https://github.com/brazilianscriptguy/Windows-SysAdmin-ProSuite/tree/main/BlueTeam-Tools) | Defensive security \u0026 **digital forensics** utilities for investigation and IR. | DFIR collection · EVTX parsers · Credential audits · Threat hunting |\n| [![Core-ScriptLibrary](https://img.shields.io/badge/Core--ScriptLibrary-Framework-C0392B?style=flat-square\u0026logo=visualstudiocode\u0026logoColor=white)](https://github.com/brazilianscriptguy/Windows-SysAdmin-ProSuite/tree/main/Core-ScriptLibrary) | **Modular PowerShell framework** shared by all modules. | Reusable helpers · Centralized logging · NuGet \u0026 SHA256 automation |\n| [![ITSM-Templates-WKS](https://img.shields.io/badge/ITSM--Templates-WKS-27AE60?style=flat-square\u0026logo=windows\u0026logoColor=white)](https://github.com/brazilianscriptguy/Windows-SysAdmin-ProSuite/tree/main/ITSM-Templates-WKS) | **Windows 10/11 workstation lifecycle** automation aligned with ITSM. | Pre/post-join · Profile \u0026 printer standardization · Compliance hardening |\n| [![ITSM-Templates-SVR](https://img.shields.io/badge/ITSM--Templates-SVR-8E44AD?style=flat-square\u0026logo=windows\u0026logoColor=white)](https://github.com/brazilianscriptguy/Windows-SysAdmin-ProSuite/tree/main/ITSM-Templates-SVR) | **Windows Server provisioning, hardening \u0026 ITSM compliance**. | Server baselines · Role configuration · GPO drift remediation |\n| [![GPO-Templates](https://img.shields.io/badge/GPO--Templates-Policies-F39C12?style=flat-square\u0026logo=matrix\u0026logoColor=black)](https://github.com/brazilianscriptguy/Windows-SysAdmin-ProSuite/tree/main/SysAdmin-Tools/GroupPolicyObjects-Templates) | Ready-to-import **Group Policy Objects** for domain and forest environments. | Security \u0026 UX GPOs · Forest-wide templates · Export/import automation |\n| [![AD-SSO-Integrations](https://img.shields.io/badge/AD--SSO--Integrations-LDAP%2FSSO-8A2BE2?style=flat-square\u0026logo=auth0\u0026logoColor=white)](https://github.com/brazilianscriptguy/Windows-SysAdmin-ProSuite/tree/main/SysAdmin-Tools/ActiveDirectory-SSO-Integrations) | **AD LDAP / SSO integration patterns** for cross-platform apps. | PHP · .NET · Flask · Node.js · Spring Boot · Secure env-var binding |\n| [![ProSuite-Hub](https://img.shields.io/badge/ProSuite--Hub-Launcher-1ABC9C?style=flat-square\u0026logo=powershell\u0026logoColor=white)](https://github.com/brazilianscriptguy/Windows-SysAdmin-ProSuite/tree/main/ProSuite-Hub) | Unified **GUI launcher and module orchestrator** for the entire suite. | Centralized tool discovery · Menu-driven interface · Single entry point |\n\n---\n\n## 🏗️ Engineering Principles\n\nEvery script in this suite is built against the same safety contract:\n\n- ✅ **PowerShell 5.1 first** — PowerShell 7.x compatible where applicable\n- ✅ **No destructive action without explicit intent** — `ShouldProcess` enforced in all core logic\n- ✅ **GUI-driven execution** for operator safety in interactive scenarios\n- ✅ **Structured logging** (`.log`) and exportable audit reports (`.csv`) on every significant operation\n- ✅ **No hidden state, no silent failures** — every error path is surfaced and logged\n- ✅ **Credential hygiene by design** — secrets bound via environment variables, never hardcoded\n- ✅ **ITSM-aligned change management** — provisioning workflows follow standardized lifecycle patterns\n\n\u003e Continuously evaluated via **PSScriptAnalyzer**, **SARIF reporting**, and **GitHub Actions CI** in report-only mode — visibility without blocking delivery.\n\n---\n\n## 🔍 Quality Assurance \u0026 Static Analysis\n\n| Tool | Role |\n|------|------|\n| [![PSScriptAnalyzer](https://img.shields.io/badge/PSScriptAnalyzer-ON-blueviolet?style=flat-square\u0026logo=powershell)](https://github.com/PowerShell/PSScriptAnalyzer) | PowerShell linting — runtime safety and best-practice enforcement |\n| [![Gitleaks](https://img.shields.io/badge/Gitleaks-ON-red?style=flat-square\u0026logo=github)](https://github.com/gitleaks/gitleaks) | Secret scanning — prevents credential leaks at commit time |\n| [![Prettier](https://img.shields.io/badge/Prettier-ON-ff69b4?style=flat-square\u0026logo=prettier)](https://prettier.io) | Markdown and web-asset formatting consistency |\n| [![EditorConfig](https://img.shields.io/badge/EditorConfig-ON-blue?style=flat-square\u0026logo=editorconfig)](https://editorconfig.org) | Cross-editor formatting standardization |\n| [![NuGet](https://img.shields.io/badge/NuGet-SHA256-blue?style=flat-square\u0026logo=nuget)](https://github.com/brazilianscriptguy/Windows-SysAdmin-ProSuite/actions) | Integrity-verified package releases |\n| [![CodeQL](https://img.shields.io/badge/CodeQL-Static%20Analysis-purple?style=flat-square\u0026logo=github)](https://github.com/brazilianscriptguy/Windows-SysAdmin-ProSuite/security/code-scanning) | Deep static security analysis |\n\n\u003e CI findings inform controlled remediation cycles — **non-blocking by design, signal-rich by intent**.\n\n---\n\n## 🌐 Language Composition\n\n| Language | Share | Primary Use |\n|----------|-------|-------------|\n| PowerShell | 96.7% | Automation, IAM, DFIR, ITSM provisioning |\n| VBScript | 1.3% | Legacy workstation automation |\n| HTML | 0.6% | GUI components and report templates |\n| T-SQL | 0.4% | WSUS SUSDB maintenance queries |\n| Java / PHP / Other | 0.6% | AD LDAP / SSO integration examples |\n\n---\n\n## 📚 Research Foundation \u0026 Citation\n\n[![DOI](https://img.shields.io/badge/DOI-10.5281%2Fzenodo.18487320-blue?style=for-the-badge\u0026logo=zenodo)](https://doi.org/10.5281/zenodo.18487320) [![CITATION.cff](https://img.shields.io/badge/CITATION.cff-Available-informational?style=for-the-badge)](https://github.com/brazilianscriptguy/Windows-SysAdmin-ProSuite/blob/main/CITATION.cff) [![ORCID](https://img.shields.io/badge/ORCID-0000--0003--3705--7468-A6CE39?style=for-the-badge\u0026logo=orcid)](https://orcid.org/0000-0003-3705-7468)\n\nSuitable for **academic, technical, and policy-oriented citation** across cybersecurity engineering, DFIR, IAM, IT governance, and ITSM-aligned infrastructure management.\n\n**Citation (APA):**\n\u003e Roberto da Silva, L. H. (2026). *Windows-SysAdmin-ProSuite* (Version 1.8.8) [Computer software]. Zenodo. https://doi.org/10.5281/zenodo.18487320\n\n**Selected publications:**\n- Roberto da Silva, L. H. (2025). *SQL Syntax Models for Building Parsers to Query Event Logs in EVTX Format*. Revista FT — Computer Science, Vol. 29, Issue 142. [DOI: 10.69849/revistaft/th102502121360](https://doi.org/10.69849/revistaft/th102502121360)\n- Roberto da Silva, L. H. (2024). *Event Logs: Applying a Log Analysis Model for Auditing Event Record Registration*. Sorian Editora. ISBN: 978-65-5453-366-9\n- Roberto da Silva, L. H. (2009). *Computer Networking Technology: Using GPOs to Secure Corporate Domains*. Ciência Moderna.\n\n---\n\n## 👤 Author \u0026 Stewardship\n\n**Luiz Hamilton Silva** — `@brazilianscriptguy`\n\nSenior IAM Analyst · Identity \u0026 Access Management · AD \u0026 Azure AD · Windows Server Architect · PowerShell Automation · Digital Forensics Researcher\n\n[![LinkedIn](https://img.shields.io/badge/LinkedIn-brazilianscriptguy-0077B5?style=for-the-badge\u0026logo=linkedin)](https://www.linkedin.com/in/brazilianscriptguy/) [![YouTube](https://img.shields.io/badge/YouTube-@brazilianscriptguy-FF0000?style=for-the-badge\u0026logo=youtube)](https://www.youtube.com/@brazilianscriptguy) [![X](https://img.shields.io/badge/X-@brazscriptguy-000000?style=for-the-badge\u0026logo=x)](https://x.com/brazscriptguy) [![ORCID](https://img.shields.io/badge/ORCID-0000--0003--3705--7468-A6CE39?style=for-the-badge\u0026logo=orcid)](https://orcid.org/0000-0003-3705-7468)\n\n\u003e This project reflects years of operational use, continuous refinement in production environments, and a commitment to principled, auditable systems engineering.\n\n---\n\n## 🤝 Contributing \u0026 Reuse\n\nContributions are welcome. Please review [`CONTRIBUTING.md`](https://github.com/brazilianscriptguy/Windows-SysAdmin-ProSuite/blob/main/.github/CONTRIBUTING.md) before submitting a pull request.\n\n- **Pull requests** — bug fixes, documentation improvements, and new tools aligned with the suite's principles\n- **Attribution** — required under the MIT License for any reuse or derivative work\n- **Academic / institutional reuse** — please cite the repository DOI or the `CITATION.cff` file\n- **Security disclosures** — follow the [`SECURITY.md`](https://github.com/brazilianscriptguy/Windows-SysAdmin-ProSuite/blob/main/.github/SECURITY.md) responsible disclosure process\n\n---\n\n## 📬 Contact \u0026 Support\n\n[![Email](https://img.shields.io/badge/Email-luizhamilton.lhr%40gmail.com-D14836?style=for-the-badge\u0026logo=gmail)](mailto:luizhamilton.lhr@gmail.com) [![Patreon](https://img.shields.io/badge/Patreon-Support-red?style=for-the-badge\u0026logo=patreon)](https://www.patreon.com/brazilianscriptguy) [![Buy Me a Coffee](https://img.shields.io/badge/Buy%20Me%20a%20Coffee-Support-yellow?style=for-the-badge\u0026logo=buymeacoffee)](https://buymeacoffee.com/brazilianscriptguy) [![Ko-fi](https://img.shields.io/badge/Ko--fi-Support-29ABE0?style=for-the-badge\u0026logo=kofi)](https://ko-fi.com/brazilianscriptguy) [![GoFundMe](https://img.shields.io/badge/GoFundMe-Support-00B964?style=for-the-badge\u0026logo=gofundme)](https://www.gofundme.com/f/brazilianscriptguy) [![WhatsApp](https://img.shields.io/badge/WhatsApp-PowerShellBR-25D366?style=for-the-badge\u0026logo=whatsapp)](https://whatsapp.com/channel/0029VaEgqC50G0XZV1k4Mb1c)\n\n---\n\n\u003e *\"Engineering secure, auditable, and scalable Windows automation for enterprise and public-sector environments — grounded in operational practice and peer-reviewed research.\"*\n\n© 2026 Luiz Hamilton Silva · MIT License · [CHANGELOG](CHANGELOG.md) · [CITATION](CITATION.cff)\n\n---\n\n\u003c!-- ATS Keywords --\u003e\nPowerShell automation · Windows Server administration · Active Directory · Azure AD · DNS · DHCP · WSUS · Group Policy (GPO) · PKI · certificate management · Identity \u0026 Access Management (IAM) · ITSM provisioning · security hardening · credential hygiene · digital forensics · DFIR · EVTX log analysis · event correlation · incident response · CI/CD · GitHub Actions · PSScriptAnalyzer · NuGet · SHA256 · SARIF · CodeQL · secure DevOps · modular architecture · enterprise scripting · Windows infrastructure automation\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbrazilianscriptguy%2Fwindows-sysadmin-prosuite","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fbrazilianscriptguy%2Fwindows-sysadmin-prosuite","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fbrazilianscriptguy%2Fwindows-sysadmin-prosuite/lists"}