Jason is known as “The PowerShell Guy” at SANS and has a deep knowledge of Windows Server security. With every new update, all eyes look to him to dissect what’s new with Microsoft's latest operating systems, and what to watch out for. He specializes in the security of Microsoft Windows 10 and Windows Server in Active Directory environments, with an emphasis on PowerShell automation. Jason is the owner of Enclave Consulting LLC and has worked as an independent consultant supporting Microsoft environments for over 20 years.
According to Jason, "There is a large demand in the market for IT professionals who understand Microsoft Windows at a deeper level. Forensics, reverse engineering malware, hacking techniques, and implementing defenses in the kernel, such as DEP, ASLR and User Account Control are just a few examples. Figuring out how to obtain this knowledge (beyond sifting through hundreds of pages of Microsoft TechNet articles) is something many struggle with.” Jason is passionate about creating tools and teaching students to understand Windows to be effective cybersecurity professionals.
One student wrote “Jason is a Guru at Microsoft Windows Security. I attended a course he led for advance IT Security professionals and he gave all of us lots of new information. It is apparent that Jason invests an enormous amount of time tracking down all the intricate details of Windows servers. His consulting skills, training skills, and knowledge all come together to provide enormous value.”
Jason graduated from the University of Virginia and obtained his master’s degree from the University of Texas at Austin. He has held several certifications including GIAC GCWN, GSEC and was a Microsoft MVP for the ISA Server firewall. Jason gives away all of his PowerShell scripts at https://BlueTeamPowerShell.com.
ADDITIONAL CONTRIBUTIONS BY JASON FOSSEN:
PowerShell 2020: State of the Art / Hack / Infection, September 2020
Go here to download hundreds of PowerShell and VBScript scripts for tasks large and small related to Microsoft product security.