RCFMARTIN

PWSH

PS\> ~/Visitor: $⠀ Get-RcfMartin

Name : Ricardo Martin

Roles : [ "DevOps", "DevSecOps", "Cybersecurity" ]

Focus : [ "Automation", "Security", "Scripting" ]

PowershellEnthusiast : True

LinuxEnthusiast : True

GymRat : True

CaffeineAddicted : True

PS\> ~/Visitor: $⠀ █

# Quick navigation

Get-Blog Technical posts on automation, DevSecOps & scripting → Get-Portfolio Skills, technical stack and contact information → Get-PSRepository Currently published powershell modules ↗

⎇ main

a3f92c1 fix: it worked on my machine so shipping it rcfmartin 12 min ago │b81d4e7 fix: ping worked so the network is fine (it was not fine) rcfmartin 1 hour ago │c55a012 chore: opened ticket, fixed issue, closed ticket, ticket reopened by user rcfmartin 2 hours ago │d29f38b fix: user said it is broken, computer was off rcfmartin 4 hours ago │g90e153 fix: works now, no idea why, not asking questions rcfmartin yesterday │h13d76a fix: rm -rf executed on wrong server, updated resume just in case rcfmartin yesterday │k92b310 docs: wrote a comment that explains absolutely nothing rcfmartin 2 days ago │l58e204 fix: packet loss resolved by aggressively blaming the cable rcfmartin 3 days ago │m71a983 fix: DNS. it is always DNS. it was DNS rcfmartin 3 days ago │r65a123 chore: ran the same command twice expecting different results rcfmartin 5 days ago │y89e231 fix: googled the same regex for the fifth time this month rcfmartin 2 weeks ago │z03f567 chore: reboot fixed it, root cause is the mystery of the universe rcfmartin 2 weeks ago │dd2e789 docs: added do not touch comment, touched it the next day rcfmartin 3 weeks ago │ez1e084 chore: spent 3 hours automating a 5 minute task, no regrets rcfmartin 3 weeks ago │a3f92c1 fix: it worked on my machine so shipping it rcfmartin 12 min ago │b81d4e7 fix: ping worked so the network is fine (it was not fine) rcfmartin 1 hour ago │c55a012 chore: opened ticket, fixed issue, closed ticket, ticket reopened by user rcfmartin 2 hours ago │d29f38b fix: user said it is broken, computer was off rcfmartin 4 hours ago │g90e153 fix: works now, no idea why, not asking questions rcfmartin yesterday │h13d76a fix: rm -rf executed on wrong server, updated resume just in case rcfmartin yesterday │k92b310 docs: wrote a comment that explains absolutely nothing rcfmartin 2 days ago │l58e204 fix: packet loss resolved by aggressively blaming the cable rcfmartin 3 days ago │m71a983 fix: DNS. it is always DNS. it was DNS rcfmartin 3 days ago │r65a123 chore: ran the same command twice expecting different results rcfmartin 5 days ago │y89e231 fix: googled the same regex for the fifth time this month rcfmartin 2 weeks ago │z03f567 chore: reboot fixed it, root cause is the mystery of the universe rcfmartin 2 weeks ago │dd2e789 docs: added do not touch comment, touched it the next day rcfmartin 3 weeks ago │ez1e084 chore: spent 3 hours automating a 5 minute task, no regrets rcfmartin 3 weeks ago │

PS > Get-LatestPosts⠀ -Count⠀ 3⠀

View all →

Powershell 17 min read

Building a Two-Tier Internal CA from Scratch with PowerShell

A clickthrough ADCS install gets you a single-tier CA with the CRL on localhost and the root key on a domain-joined host. This post stands up a proper offline-root + online-issuing PKI from scratch idempotently in PowerShell, with publication points, sneakernet workflow, and the validation gates that prove the chain works before you trust it.

Powershell 14 min read

Debloating Active Directory Stale Accounts, Orphaned Groups, and the Cleanup Pipeline

Inventory, classify, quarantine, delete a repeatable cleanup pipeline for the accumulated sediment every long-lived AD carries, with retention windows, drift tracking, and none of the "oops I deleted production" stories.

Powershell 15 min read

Active Directory Security Baselines as Idempotent Scripts

Tiered admin, ACL hardening, Protected Users, AdminSDHolder the AD security controls that matter, encoded as Get/Test/Set scripts that audit first and enforce second.