kfalconspb · October 12, 2017 04:41
diff --git a/boxstarter.ps1 b/boxstarter.ps1
 # Description: Boxstarter Script
# Author: ElJefeDSecurIT 
# Last Updated: 2017-10-10
#
# Install boxstarter:
# 	. { iwr -useb http://boxstarter.org/bootstrapper.ps1 } | iex; get-boxstarter -Force
#
# You might need to set: Set-ExecutionPolicy RemoteSigned
#
# Run this boxstarter by calling the following from an **elevated** command-prompt:
# 	start http://boxstarter.org/package/nr/url?<URL-TO-RAW-GIST>
# OR
# 	Install-BoxstarterPackage -PackageName <URL-TO-RAW-GIST> -DisableReboots
#
# Learn more: http://boxstarter.org/Learn/WebLauncher
# heavily borrowed from Jessie, but I just have to tweak some things for my boxen. I have a couple of things I use for work, 
# a couple of things I use for home. this includes a bunch of core optimizations i've picked up over the years...
# little things... small, exlusively paranoid things...


#---- TEMPORARY ---
Disable-UAC
#---- PERMANENT ---
# ElJEfe: for Ned Pyle, because, I blame him. 
Disable-WindowsOptionalFeature -Online -FeatureName SMB1Protocol

#--- Fonts ---
#ElJefe: sry I don't trust fonts I didn't review or came from the OS itself. 
#choco install inconsolata -y
  
#--- Windows Settings --- 
#eljefe- I like Bing Search. so, there. 
Disable-BingSearch
Disable-GameBarTips

Set-WindowsExplorerOptions -EnableShowHiddenFilesFoldersDrives -EnableShowProtectedOSFiles -EnableShowFileExtensions
Set-TaskbarOptions -Size Large -Dock Bottom -Combine Full # -Lock # i do not like locks on my taskbar. 
Set-TaskbarOptions -Size Large -Dock Bottom -Combine Full -AlwaysShowIconsOn

#--- Windows Subsystems/Features ---
#eljefe - Nice Job Jesse ;)
# choco install Microsoft-Hyper-V-All -source windowsFeatures
choco install Microsoft-Windows-Subsystem-Linux -source windowsfeatures

#--- Tools --- eljefe: I need git; any way i want it, that's the way I need it. i'll even get it in bash once i'm done. 
choco install git -params '"/GitAndUnixToolsOnPath /WindowsTerminal"' -y
choco install poshgit
choco install sysinternals -y
choco install vim

#--- Apps ---
choco install googlechrome
# choco install docker-for-windows
# choco install sharex
choco install microsoft-teams
# choco install vcxsrv
 choco install adobereader
 choco install jre8
 choco install firefox
 choco install 7zip.install
 choco install notepadplusplus.install
 choco install powershell
 choco install curl
 choco install putty
 choco install chocolately gui
 choco install winscp.install
 choco install wireshark
 choco install boxstarter.common
 choco install citrix-receiver
 choco install nmap
 choco install vmwareworkstation
 choco install rvtools
 choco install office365proplus
 choco install postman -y
 choco install regscanner
 choco install ollydbg
 choco install x64dbg.portable
 choco install visualstudio2015community
 choco install sqltoolbelt
 choco install kindle
 choco install sendtokindle
 choco install amazon-music
 choco install authy-desktop
 choco install keepass.install
 choco install vagrant
 choco install fiddler4
 choco install burp-suite-free-edition
 choco install sql-server-management-studio
 choco install pycharm-community
 choco install slack
 choco install nugetpackageexplorer
 choco install pscx
 choco install yumi
 choco install chocolateypackageupdater
 choco install kodi
 choco install veracrypt
 choco install posh-github
 choco install processhacker
 choco install rsat
 choco install nugetpackagemanager
 choco install angryip
 choco install softerraldapbrowser
 choco install httrack.app
 choco install office365-2016-deployment-tool
 choco install visualstudiocod
 choco install firefox
 choco install python3
 choco install zoom
 choco install tor-browser
 choco install ldapadmin
 choco install finddupe
 choco install apktool
 choco install camtasia
 choco install simplednscrypt
 choco install dex2jar
 choco install ida-free
 choco install kodi
 choco install vscode-powershell
 choco install dsc.powershellcommunity
 choco install poshtools-visualstudio2015
 choco install powershellhere
 choco install okta.core.automation
 choco install powergist
 choco install chocolateyexplorer
#--- Uninstall unecessary applications that come with Windows out of the box ---

# 3D Builder
Get-AppxPackage Microsoft.3DBuilder | Remove-AppxPackage
# Alarms
Get-AppxPackage Microsoft.WindowsAlarms | Remove-AppxPackage
# Autodesk
Get-AppxPackage *Autodesk* | Remove-AppxPackage

# Bing Weather, News, Sports, and Finance (Money):
Get-AppxPackage Microsoft.BingFinance | Remove-AppxPackage
Get-AppxPackage Microsoft.BingNews | Remove-AppxPackage
Get-AppxPackage Microsoft.BingSports | Remove-AppxPackage
Get-AppxPackage Microsoft.BingWeather | Remove-AppxPackage

# BubbleWitch
Get-AppxPackage *BubbleWitch* | Remove-AppxPackage
# Candy Crush
Get-AppxPackage king.com.CandyCrush* | Remove-AppxPackage
# Comms Phone
Get-AppxPackage Microsoft.CommsPhone | Remove-AppxPackage
# Dell
Get-AppxPackage *Dell* | Remove-AppxPackage
# Dropbox
Get-AppxPackage *Dropbox* | Remove-AppxPackage
# Facebook
Get-AppxPackage *Facebook* | Remove-AppxPackage
# Feedback Hub
Get-AppxPackage Microsoft.WindowsFeedbackHub | Remove-AppxPackage
# Get Started
Get-AppxPackage Microsoft.Getstarted | Remove-AppxPackage
# Keeper
Get-AppxPackage *Keeper* | Remove-AppxPackage
# Mail & Calendar
Get-AppxPackage microsoft.windowscommunicationsapps | Remove-AppxPackage
# Maps
Get-AppxPackage Microsoft.WindowsMaps | Remove-AppxPackage
# March of Empires
Get-AppxPackage *MarchofEmpires* | Remove-AppxPackage
# McAfee Security
Get-AppxPackage *McAfee* | Remove-AppxPackage
# Uninstall McAfee Security App
$mcafee = gci "HKLM:\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall" | foreach { gp $_.PSPath } | ? { $_ -match "McAfee Security" } | select UninstallString
if ($mcafee) {
	$mcafee = $mcafee.UninstallString -Replace "C:\Program Files\McAfee\MSC\mcuihost.exe",""
	Write "Uninstalling McAfee..."
	start-process "C:\Program Files\McAfee\MSC\mcuihost.exe" -arg "$mcafee" -Wait
}

# Messaging
Get-AppxPackage Microsoft.Messaging | Remove-AppxPackage
# Minecraft
Get-AppxPackage *Minecraft* | Remove-AppxPackage
# Netflix
Get-AppxPackage *Netflix* | Remove-AppxPackage

# Office Hub
Get-AppxPackage Microsoft.MicrosoftOfficeHub | Remove-AppxPackage

# One Connect
Get-AppxPackage Microsoft.OneConnect | Remove-AppxPackage

# OneNote
#Get-AppxPackage Microsoft.Office.OneNote | Remove-AppxPackage

# People
Get-AppxPackage Microsoft.People | Remove-AppxPackage

# Phone
Get-AppxPackage Microsoft.WindowsPhone | Remove-AppxPackage

# Photos
Get-AppxPackage Microsoft.Windows.Photos | Remove-AppxPackage

# Plex
Get-AppxPackage *Plex* | Remove-AppxPackage

# Skype (Metro version)
Get-AppxPackage Microsoft.SkypeApp | Remove-AppxPackage

# Sound Recorder
Get-AppxPackage Microsoft.WindowsSoundRecorder | Remove-AppxPackage

# Solitaire
Get-AppxPackage *Solitaire* | Remove-AppxPackage

# Sticky Notes
Get-AppxPackage Microsoft.MicrosoftStickyNotes | Remove-AppxPackage

# Sway
Get-AppxPackage Microsoft.Office.Sway | Remove-AppxPackage

# Twitter 
#eljefe: oh now hold on there... let's not get carried away...
# Get-AppxPackage *Twitter* | Remove-AppxPackage

# Xbox
Get-AppxPackage Microsoft.XboxApp | Remove-AppxPackage
Get-AppxPackage Microsoft.XboxIdentityProvider | Remove-AppxPackage

# Zune Music, Movies & TV
#eljefe: with my last words i curse at thee, with my last breath, I spit at thee.
Get-AppxPackage Microsoft.ZuneMusic | Remove-AppxPackage
Get-AppxPackage Microsoft.ZuneVideo | Remove-AppxPackage

#--- Windows Settings ---
# Some from: @NickCraver's gist https://gist.github.com/NickCraver/7ebf9efbfd0c3eab72e9

# Privacy: Let apps use my advertising ID: Disable
If (-Not (Test-Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\AdvertisingInfo")) {
    New-Item -Path HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\AdvertisingInfo | Out-Null
}
Set-ItemProperty -Path HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\AdvertisingInfo -Name Enabled -Type DWord -Value 0

# WiFi Sense: HotSpot Sharing: Disable
If (-Not (Test-Path "HKLM:\Software\Microsoft\PolicyManager\default\WiFi\AllowWiFiHotSpotReporting")) {
    New-Item -Path HKLM:\Software\Microsoft\PolicyManager\default\WiFi\AllowWiFiHotSpotReporting | Out-Null
}
Set-ItemProperty -Path HKLM:\Software\Microsoft\PolicyManager\default\WiFi\AllowWiFiHotSpotReporting -Name value -Type DWord -Value 0

# WiFi Sense: Shared HotSpot Auto-Connect: Disable
Set-ItemProperty -Path HKLM:\Software\Microsoft\PolicyManager\default\WiFi\AllowAutoConnectToWiFiSenseHotspots -Name value -Type DWord -Value 0

# Start Menu: Disable Bing Search Results
# ElJefe: You bet that if i'm protecting Bing Ima gonna be using Bing. and like it!
 Set-ItemProperty -Path HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Search -Name BingSearchEnabled -Type DWord -Value 0
# To Restore (Enabled):
#Set-ItemProperty -Path HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Search -Name BingSearchEnabled -Type DWord -Value 1

# Disable Telemetry (requires a reboot to take effect)
# Note this may break Insider builds for your organization
Set-ItemProperty -Path HKLM:\SOFTWARE\Policies\Microsoft\Windows\DataCollection -Name AllowTelemetry -Type DWord -Value 0
Get-Service DiagTrack,Dmwappushservice | Stop-Service | Set-Service -StartupType Disabled

# Change Explorer home screen back to "This PC"
#Set-ItemProperty -Path HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced -Name LaunchTo -Type DWord -Value 1
# Change it back to "Quick Access" (Windows 10 default)
Set-ItemProperty -Path HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced -Name LaunchTo -Type DWord -Value 

# Better File Explorer
Set-ItemProperty -Path HKCU:\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced -Name NavPaneExpandToCurrentFolder -Value 1		
Set-ItemProperty -Path HKCU:\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced -Name NavPaneShowAllFolders -Value 1		
Set-ItemProperty -Path HKCU:\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced -Name MMTaskbarMode -Value 2

# These make "Quick Access" behave much closer to the old "Favorites"
# ElJefe I got so much stuff I work on I'm usually looking at the last thing. ain't got time to not have bottom line up front. 
# Disable Quick Access: Recent Files
#Set-ItemProperty -Path HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer -Name ShowRecent -Type DWord -Value 0
# Disable Quick Access: Frequent Folders
#Set-ItemProperty -Path HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer -Name ShowFrequent -Type DWord -Value 0
# To Restore:
Set-ItemProperty -Path HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer -Name ShowRecent -Type DWord -Value 1
Set-ItemProperty -Path HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer -Name ShowFrequent -Type DWord -Value 1

# Disable the Lock Screen (the one before password prompt - to prevent dropping the first character)
#oh hell no!
If (-Not (Test-Path HKLM:\SOFTWARE\Policies\Microsoft\Windows\Personalization)) {
	New-Item -Path HKLM:\SOFTWARE\Policies\Microsoft\Windows -Name Personalization | Out-Null
}
Set-ItemProperty -Path HKLM:\SOFTWARE\Policies\Microsoft\Windows\Personalization -Name NoLockScreen -Type DWord -Value 1
# To Restore:
#eljefe - there I fixed it: next line should be 0, or false.
# Set-ItemProperty -Path HKLM:\SOFTWARE\Policies\Microsoft\Windows\Personalization -Name NoLockScreen -Type DWord -Value 0

# Lock screen (not sleep) on lid close
Set-ItemProperty -Path 'HKLM:\SYSTEM\CurrentControlSet\Control\Session Manager\Power' -Name AwayModeEnabled -Type DWord -Value 1
# To Restore:
# Set-ItemProperty -Path 'HKLM:\SYSTEM\CurrentControlSet\Control\Session Manager\Power' -Name AwayModeEnabled -Type DWord -Value 0

# Use the Windows 7-8.1 Style Volume Mixer
#If (-Not (Test-Path "HKLM:\SOFTWARE\Microsoft\Windows NT\CurrentVersion\MTCUVC")) {
#	New-Item -Path "HKLM:\SOFTWARE\Microsoft\Windows NT\CurrentVersion" -Name MTCUVC | Out-Null
#}
#Set-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\Windows NT\CurrentVersion\MTCUVC" -Name EnableMtcUvc -Type DWord -Value 0
# To Restore (Windows 10 Style Volume Control):
Set-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\Windows NT\CurrentVersion\MTCUVC" -Name EnableMtcUvc -Type DWord -Value 1

# Disable Xbox Gamebar
Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\GameDVR" -Name AppCaptureEnabled -Type DWord -Value 0
Set-ItemProperty -Path "HKCU:\System\GameConfigStore" -Name GameDVR_Enabled -Type DWord -Value 0

# Turn off People in Taskbar
If (-Not (Test-Path "HKCU:SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\People")) {
    New-Item -Path HKCU:SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\People | Out-Null
}
Set-ItemProperty -Path "HKCU:SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\People" -Name PeopleBand -Type DWord -Value 0

#--- Restore Temporary Settings ---
Enable-UAC
Enable-MicrosoftUpdate
Install-WindowsUpdate -acceptEula

#--- Rename the Computer ---
# Requires restart, or add the -Restart flag
#eljefe I have a strange sence of humor...
#$computername = "UNDETECTED"
#if ($env:computername -ne $computername) {
#	Rename-Computer -NewName $computername
#}
	# Description: Boxstarter Script # Author: ElJefeDSecurIT # Last Updated: 2017-10-10 # # Install boxstarter: # . { iwr -useb http://boxstarter.org/bootstrapper.ps1 } \| iex; get-boxstarter -Force # # You might need to set: Set-ExecutionPolicy RemoteSigned # # Run this boxstarter by calling the following from an elevated command-prompt: # start http://boxstarter.org/package/nr/url?<URL-TO-RAW-GIST> # OR # Install-BoxstarterPackage -PackageName <URL-TO-RAW-GIST> -DisableReboots # # Learn more: http://boxstarter.org/Learn/WebLauncher # heavily borrowed from Jessie, but I just have to tweak some things for my boxen. I have a couple of things I use for work, # a couple of things I use for home. this includes a bunch of core optimizations i've picked up over the years... # little things... small, exlusively paranoid things... #---- TEMPORARY --- Disable-UAC #---- PERMANENT --- # ElJEfe: for Ned Pyle, because, I blame him. Disable-WindowsOptionalFeature -Online -FeatureName SMB1Protocol #--- Fonts --- #ElJefe: sry I don't trust fonts I didn't review or came from the OS itself. #choco install inconsolata -y #--- Windows Settings --- #eljefe- I like Bing Search. so, there. Disable-BingSearch Disable-GameBarTips Set-WindowsExplorerOptions -EnableShowHiddenFilesFoldersDrives -EnableShowProtectedOSFiles -EnableShowFileExtensions Set-TaskbarOptions -Size Large -Dock Bottom -Combine Full # -Lock # i do not like locks on my taskbar. Set-TaskbarOptions -Size Large -Dock Bottom -Combine Full -AlwaysShowIconsOn #--- Windows Subsystems/Features --- #eljefe - Nice Job Jesse ;) # choco install Microsoft-Hyper-V-All -source windowsFeatures choco install Microsoft-Windows-Subsystem-Linux -source windowsfeatures #--- Tools --- eljefe: I need git; any way i want it, that's the way I need it. i'll even get it in bash once i'm done. choco install git -params '"/GitAndUnixToolsOnPath /WindowsTerminal"' -y choco install poshgit choco install sysinternals -y choco install vim #--- Apps --- choco install googlechrome # choco install docker-for-windows # choco install sharex choco install microsoft-teams # choco install vcxsrv
	choco install adobereader
	choco install jre8
	choco install firefox
	choco install 7zip.install
	choco install notepadplusplus.install
	choco install powershell
	choco install curl
	choco install putty
	choco install chocolately gui
	choco install winscp.install
	choco install wireshark
	choco install boxstarter.common
	choco install citrix-receiver
	choco install nmap
	choco install vmwareworkstation
	choco install rvtools
	choco install office365proplus
	choco install postman -y
	choco install regscanner
	choco install ollydbg
	choco install x64dbg.portable
	choco install visualstudio2015community
	choco install sqltoolbelt
	choco install kindle
	choco install sendtokindle
	choco install amazon-music
	choco install authy-desktop
	choco install keepass.install
	choco install vagrant
	choco install fiddler4
	choco install burp-suite-free-edition
	choco install sql-server-management-studio
	choco install pycharm-community
	choco install slack
	choco install nugetpackageexplorer
	choco install pscx
	choco install yumi
	choco install chocolateypackageupdater
	choco install kodi
	choco install veracrypt
	choco install posh-github
	choco install processhacker
	choco install rsat
	choco install nugetpackagemanager
	choco install angryip
	choco install softerraldapbrowser
	choco install httrack.app
	choco install office365-2016-deployment-tool
	choco install visualstudiocod
	choco install firefox
	choco install python3
	choco install zoom
	choco install tor-browser
	choco install ldapadmin
	choco install finddupe
	choco install apktool
	choco install camtasia
	choco install simplednscrypt
	choco install dex2jar
	choco install ida-free
	choco install kodi
	choco install vscode-powershell
	choco install dsc.powershellcommunity
	choco install poshtools-visualstudio2015
	choco install powershellhere
	choco install okta.core.automation
	choco install powergist
	choco install chocolateyexplorer #--- Uninstall unecessary applications that come with Windows out of the box --- # 3D Builder Get-AppxPackage Microsoft.3DBuilder \| Remove-AppxPackage # Alarms Get-AppxPackage Microsoft.WindowsAlarms \| Remove-AppxPackage # Autodesk Get-AppxPackage Autodesk \| Remove-AppxPackage # Bing Weather, News, Sports, and Finance (Money): Get-AppxPackage Microsoft.BingFinance \| Remove-AppxPackage Get-AppxPackage Microsoft.BingNews \| Remove-AppxPackage Get-AppxPackage Microsoft.BingSports \| Remove-AppxPackage Get-AppxPackage Microsoft.BingWeather \| Remove-AppxPackage # BubbleWitch Get-AppxPackage BubbleWitch \| Remove-AppxPackage # Candy Crush Get-AppxPackage king.com.CandyCrush* \| Remove-AppxPackage # Comms Phone Get-AppxPackage Microsoft.CommsPhone \| Remove-AppxPackage # Dell Get-AppxPackage Dell \| Remove-AppxPackage # Dropbox Get-AppxPackage Dropbox \| Remove-AppxPackage # Facebook Get-AppxPackage Facebook \| Remove-AppxPackage # Feedback Hub Get-AppxPackage Microsoft.WindowsFeedbackHub \| Remove-AppxPackage # Get Started Get-AppxPackage Microsoft.Getstarted \| Remove-AppxPackage # Keeper Get-AppxPackage Keeper \| Remove-AppxPackage # Mail & Calendar Get-AppxPackage microsoft.windowscommunicationsapps \| Remove-AppxPackage # Maps Get-AppxPackage Microsoft.WindowsMaps \| Remove-AppxPackage # March of Empires Get-AppxPackage MarchofEmpires \| Remove-AppxPackage # McAfee Security Get-AppxPackage McAfee \| Remove-AppxPackage # Uninstall McAfee Security App $mcafee = gci "HKLM:\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall" \| foreach { gp $_.PSPath } \| ? { $_ -match "McAfee Security" } \| select UninstallString if ($mcafee) { $mcafee = $mcafee.UninstallString -Replace "C:\Program Files\McAfee\MSC\mcuihost.exe","" Write "Uninstalling McAfee..." start-process "C:\Program Files\McAfee\MSC\mcuihost.exe" -arg "$mcafee" -Wait } # Messaging Get-AppxPackage Microsoft.Messaging \| Remove-AppxPackage # Minecraft Get-AppxPackage Minecraft \| Remove-AppxPackage # Netflix Get-AppxPackage Netflix \| Remove-AppxPackage # Office Hub Get-AppxPackage Microsoft.MicrosoftOfficeHub \| Remove-AppxPackage # One Connect Get-AppxPackage Microsoft.OneConnect \| Remove-AppxPackage # OneNote #Get-AppxPackage Microsoft.Office.OneNote \| Remove-AppxPackage # People Get-AppxPackage Microsoft.People \| Remove-AppxPackage # Phone Get-AppxPackage Microsoft.WindowsPhone \| Remove-AppxPackage # Photos Get-AppxPackage Microsoft.Windows.Photos \| Remove-AppxPackage # Plex Get-AppxPackage Plex \| Remove-AppxPackage # Skype (Metro version) Get-AppxPackage Microsoft.SkypeApp \| Remove-AppxPackage # Sound Recorder Get-AppxPackage Microsoft.WindowsSoundRecorder \| Remove-AppxPackage # Solitaire Get-AppxPackage Solitaire \| Remove-AppxPackage # Sticky Notes Get-AppxPackage Microsoft.MicrosoftStickyNotes \| Remove-AppxPackage # Sway Get-AppxPackage Microsoft.Office.Sway \| Remove-AppxPackage # Twitter #eljefe: oh now hold on there... let's not get carried away... # Get-AppxPackage Twitter \| Remove-AppxPackage # Xbox Get-AppxPackage Microsoft.XboxApp \| Remove-AppxPackage Get-AppxPackage Microsoft.XboxIdentityProvider \| Remove-AppxPackage # Zune Music, Movies & TV #eljefe: with my last words i curse at thee, with my last breath, I spit at thee. Get-AppxPackage Microsoft.ZuneMusic \| Remove-AppxPackage Get-AppxPackage Microsoft.ZuneVideo \| Remove-AppxPackage #--- Windows Settings --- # Some from: @NickCraver's gist https://gist.github.com/NickCraver/7ebf9efbfd0c3eab72e9 # Privacy: Let apps use my advertising ID: Disable If (-Not (Test-Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\AdvertisingInfo")) { New-Item -Path HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\AdvertisingInfo \| Out-Null } Set-ItemProperty -Path HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\AdvertisingInfo -Name Enabled -Type DWord -Value 0 # WiFi Sense: HotSpot Sharing: Disable If (-Not (Test-Path "HKLM:\Software\Microsoft\PolicyManager\default\WiFi\AllowWiFiHotSpotReporting")) { New-Item -Path HKLM:\Software\Microsoft\PolicyManager\default\WiFi\AllowWiFiHotSpotReporting \| Out-Null } Set-ItemProperty -Path HKLM:\Software\Microsoft\PolicyManager\default\WiFi\AllowWiFiHotSpotReporting -Name value -Type DWord -Value 0 # WiFi Sense: Shared HotSpot Auto-Connect: Disable Set-ItemProperty -Path HKLM:\Software\Microsoft\PolicyManager\default\WiFi\AllowAutoConnectToWiFiSenseHotspots -Name value -Type DWord -Value 0 # Start Menu: Disable Bing Search Results # ElJefe: You bet that if i'm protecting Bing Ima gonna be using Bing. and like it!
	Set-ItemProperty -Path HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Search -Name BingSearchEnabled -Type DWord -Value 0 # To Restore (Enabled): #Set-ItemProperty -Path HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Search -Name BingSearchEnabled -Type DWord -Value 1 # Disable Telemetry (requires a reboot to take effect) # Note this may break Insider builds for your organization Set-ItemProperty -Path HKLM:\SOFTWARE\Policies\Microsoft\Windows\DataCollection -Name AllowTelemetry -Type DWord -Value 0 Get-Service DiagTrack,Dmwappushservice \| Stop-Service \| Set-Service -StartupType Disabled # Change Explorer home screen back to "This PC" #Set-ItemProperty -Path HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced -Name LaunchTo -Type DWord -Value 1 # Change it back to "Quick Access" (Windows 10 default) Set-ItemProperty -Path HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced -Name LaunchTo -Type DWord -Value # Better File Explorer Set-ItemProperty -Path HKCU:\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced -Name NavPaneExpandToCurrentFolder -Value 1 Set-ItemProperty -Path HKCU:\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced -Name NavPaneShowAllFolders -Value 1 Set-ItemProperty -Path HKCU:\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced -Name MMTaskbarMode -Value 2 # These make "Quick Access" behave much closer to the old "Favorites" # ElJefe I got so much stuff I work on I'm usually looking at the last thing. ain't got time to not have bottom line up front. # Disable Quick Access: Recent Files #Set-ItemProperty -Path HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer -Name ShowRecent -Type DWord -Value 0 # Disable Quick Access: Frequent Folders #Set-ItemProperty -Path HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer -Name ShowFrequent -Type DWord -Value 0 # To Restore: Set-ItemProperty -Path HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer -Name ShowRecent -Type DWord -Value 1 Set-ItemProperty -Path HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer -Name ShowFrequent -Type DWord -Value 1 # Disable the Lock Screen (the one before password prompt - to prevent dropping the first character) #oh hell no! If (-Not (Test-Path HKLM:\SOFTWARE\Policies\Microsoft\Windows\Personalization)) { New-Item -Path HKLM:\SOFTWARE\Policies\Microsoft\Windows -Name Personalization \| Out-Null } Set-ItemProperty -Path HKLM:\SOFTWARE\Policies\Microsoft\Windows\Personalization -Name NoLockScreen -Type DWord -Value 1 # To Restore: #eljefe - there I fixed it: next line should be 0, or false. # Set-ItemProperty -Path HKLM:\SOFTWARE\Policies\Microsoft\Windows\Personalization -Name NoLockScreen -Type DWord -Value 0 # Lock screen (not sleep) on lid close Set-ItemProperty -Path 'HKLM:\SYSTEM\CurrentControlSet\Control\Session Manager\Power' -Name AwayModeEnabled -Type DWord -Value 1 # To Restore: # Set-ItemProperty -Path 'HKLM:\SYSTEM\CurrentControlSet\Control\Session Manager\Power' -Name AwayModeEnabled -Type DWord -Value 0 # Use the Windows 7-8.1 Style Volume Mixer #If (-Not (Test-Path "HKLM:\SOFTWARE\Microsoft\Windows NT\CurrentVersion\MTCUVC")) { # New-Item -Path "HKLM:\SOFTWARE\Microsoft\Windows NT\CurrentVersion" -Name MTCUVC \| Out-Null #} #Set-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\Windows NT\CurrentVersion\MTCUVC" -Name EnableMtcUvc -Type DWord -Value 0 # To Restore (Windows 10 Style Volume Control): Set-ItemProperty -Path "HKLM:\SOFTWARE\Microsoft\Windows NT\CurrentVersion\MTCUVC" -Name EnableMtcUvc -Type DWord -Value 1 # Disable Xbox Gamebar Set-ItemProperty -Path "HKCU:\SOFTWARE\Microsoft\Windows\CurrentVersion\GameDVR" -Name AppCaptureEnabled -Type DWord -Value 0 Set-ItemProperty -Path "HKCU:\System\GameConfigStore" -Name GameDVR_Enabled -Type DWord -Value 0 # Turn off People in Taskbar If (-Not (Test-Path "HKCU:SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\People")) { New-Item -Path HKCU:SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\People \| Out-Null } Set-ItemProperty -Path "HKCU:SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\Advanced\People" -Name PeopleBand -Type DWord -Value 0 #--- Restore Temporary Settings --- Enable-UAC Enable-MicrosoftUpdate Install-WindowsUpdate -acceptEula #--- Rename the Computer --- # Requires restart, or add the -Restart flag #eljefe I have a strange sence of humor... #$computername = "UNDETECTED" #if ($env:computername -ne $computername) { # Rename-Computer -NewName $computername #}