Posts by acrypthash@infosec.exchange
(DIR) Post #APShDbw9YbUHnptbv6 by acrypthash@infosec.exchange
2022-11-10T11:36:08Z
0 likes, 0 repeats
I am so close to being done with reviewing ~600 google accounts! When I am finished, I am going to be moving them to their proper OUs, then we are going to start the mass enrollment of 2FA, then enforcement! We had about half of our users NOT enrolled in 2FA. I don't know if we will ever get to 100 percent, but we are going to be close :DSince my Google project is going to be wrapping up soon, that means that my table top scheduling is going to be coming up soon as well. I still want to review some examples of some #IR table tops if anyone has some to share!#openVAS is continuing to move at scale, we are now scanning several subnets worth of IPs. The results are coming out comparable to #nessus, so that's cool to see as well.Threat detection stuff has kind of become stagnant which is frustrating. The engineer that is building the new server has been taking quite a long time to build it and has also been having issues. Despite the time constraint and qualms, I can't wait to start working on detection and reviewing logs more. TBF I do have an active ELK instance, it's just running on a 2017 version of #elastic and it has been an experience lol. When I get the time I 'd like to compare the difference now that #sysmon is deployed at mass.
(DIR) Post #APSj5DtrF4keqRwzVg by acrypthash@infosec.exchange
2022-11-10T13:42:20Z
0 likes, 0 repeats
@amerika Why do you say that? I've had good luck with Google 2FA and the Google authenticator app personally.
(DIR) Post #APbuFw9uOJU4vSPPBQ by acrypthash@infosec.exchange
2022-11-14T23:59:50Z
0 likes, 0 repeats
@stux I see what you did there.
(DIR) Post #APfoxb5cGUaNEIfzc0 by acrypthash@infosec.exchange
2022-11-16T21:14:57Z
0 likes, 1 repeats
I've said it before and I'll say it again, acknowledgement of good work from your supervisor goes SO far. I've built a total roadmap for #security at my employer. I spent a week working on the map trying to perfect it. I had my one on one meeting with my supervisor this afternoon and he said the map was exactly what he was looking for :DIt's like a high. I now have 20+ Jira tickets to make and man do I want to burn the midnight oil and do all the things, LETS GO!
(DIR) Post #APsJ57Z1Db7zQ4HVHk by acrypthash@infosec.exchange
2022-11-22T21:52:39Z
0 likes, 0 repeats
@DeveloperMemes I can hear this meme.
(DIR) Post #APviDoSkgZIb74THX6 by acrypthash@infosec.exchange
2022-11-01T12:49:32Z
0 likes, 0 repeats
Last spam toot and then I need to get into the projects, the new #dfirreport is out!https://thedfirreport.com/2022/10/31/follina-exploit-leads-to-domain-compromise/
(DIR) Post #AXHllIooul51NJT6a8 by acrypthash@infosec.exchange
2023-07-02T13:37:07Z
1 likes, 0 repeats
I am just now getting time to write about this, but last weekend I went my local hacking space and got to hack a Tenda FH1206 router. It was a lot of fun! I definitely received some help on the soldering part though :blobcatsweats: I also snagged a signed copy of Space Rogue! #security #hacking #router #squashfs #opensource
(DIR) Post #AYpxkLezKG5sZCPKfg by acrypthash@infosec.exchange
2023-08-15T20:49:30Z
1 likes, 0 repeats
We recently had an end user experience a supply chain attack where they had purchased a USB to HDMI adapter. After plugging in the device, a drive was mapped that contained a malicious executable, which the end user ran thinking it was needed for the device to work. Further investigation showed it was a RAT with Chinese domain names being hit. Fun stuff!#security #malware #RAT #supplychainattack #china
(DIR) Post #AZLWugN8h38hzoTnzU by acrypthash@infosec.exchange
2023-08-16T23:47:42Z
1 likes, 0 repeats
@catsalad For you: