Boy do I feel dumb :)
Hi, I think I am infected with something. It got past BitDefender GravityZone, Sandboxie and OSAmror. And it changed the character mapping of my...
Is there any new protection in the latest version of OSArmor, or it is some kind of money grab ?
Hi Mcafee Endpoint can't update and doesn't show systray icon when Software Restriction Policy is on. They are asking me to contact MS to fix the...
What do you people think about the SS7 attack, it's old;ish but still unsolved, correct ? The hacker only have to know you phone number to attack you.
I think I read somewhere that Comodo Auto-containment allows certain access to Windows and COM interfaces. Does anybody know what is exactly allowed?
I am simply very suspicious. Then Macrium started prompting me for updates and my firewall was supposedly set to block outbound, and Macrium was...
I have just downloaded an eval of BitDefender endpoint. There's no configuration available, just a simple screen showing me what components are...
here you go: accesschk -w -s -q -u Users "C:\Program Files" accesschk -w -s -q -u Users "C:\Program Files (x86)" accesschk -w -s -q -u Users...
Hi Wat0114, I use SysInternals AccessChk to point out which folders have write and execute. Then I use Software Restriction Policy to block those...
Thanks a lot wat0114. that works.
Why can't CIS contain MS Chromium Edge ? It is almost the same as Chrome ! Any auto-containment rule I try to create mentioning msedge gets the...
I found one answer: application white list bypass.
In the living off the land list: LOLBAS it frequently mentions AWL bypass. For example in cmstp. But I don't know what AWL stands for.
My VoodooShield is always asking me whether to run C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.2009.7-0\MPCMDRUN. I think it is part...
Found out about the registry key HKLM \ System \ CurrentControlSet \ Services \ TCPIP \ Parameters \ DisableIPSourceRouting dword 1 . I guess that...
I want one particular machine not be reachable by internet, but be connected to all other machines. It is going to be my SIEM. I think if I give...
I was doing some testing the other day and changed 2 gpedit items. When the test failed, I was going to undo them and 1 item was already deleted.
Hi, I have a suspicion that there is a remote screen grabber / remote controller hidden in firmware. How do I get rid of it.
I remember a few months back that I got a blackbackground attack. Did the attacker spoof the site I was visiting? Is that how it was done? Mind...
How do you block 3rd party scripts ?
Javascript is too powerful and too useful to hackers. A simple hack such setting the background color to the text color will render your page...
Sometimes when I enable Shadow mode, a popup says "Z dirve is almost out of space. Please exit shadow mode now". I don't have a Z drive, is it...
At my workplace I talked with security guards. Their temperature /fever detector does not recognize a face when a facial mask is worn. Also, it...
Sure I can send you 2 Yubikeys. Private message your shipping address.
Separate names with a comma.
