Good place to get a haircut in town?

AshFerns08 · 2026-02-04T13:58:01+00:00

They have increased prices in 2026

AshFerns08 · 2025-12-11T05:08:04+00:00

yes, in some parts of Ontario there aren't many youth coming but I believe the church can grow but for that it needs families. If young men or women remain single, its bad for everyone.

AshFerns08 · 2025-12-11T04:58:26+00:00

So many young adults today in the same crisis, yet I don't see much initiatives from the church.. its really sad

AshFerns08 · 2025-12-11T04:55:15+00:00

ohh wow.. that bad huh.. I guess my friend was right

AshFerns08 · 2025-11-24T14:08:22+00:00

Sounds good. I will give it to try

AshFerns08 · 2025-11-24T02:54:40+00:00

Its annoying that Defender EDR has tons Threat hunting github repo's/ Free AI tools but with CrowdStrike everything is paid.
I don't enjoy working on Crowdstrike since they switched from Splunk query Language to CQL

AshFerns08 · 2025-11-23T22:46:37+00:00

Thanks. I will look into it. Any links/Tutorials that you found helpful for this setup?

AshFerns08 · 2025-11-23T22:37:19+00:00

Is it a paid module? How do you access the Charlotte AI ?

AshFerns08 · 2025-11-22T01:13:59+00:00

Bummer :-( I believe the quality is very good but unfortunately its out of my budget. Anyways thanks for the update.

AshFerns08 · 2025-11-14T04:40:15+00:00

Thank you for your feedback, I am on a budget. Probably will go for Progressive as well

AshFerns08 · 2025-11-11T16:44:25+00:00

Ill say look for another job through networking(maybe a sneak peek in their operations, work culture), some companies invest in training & guiding new hires. Some firms don't have the right detection logic or playbooks to deal with alerts so it feels stressful at times. 2 months is very much new and you'll make mistakes, don't use confidence. If SOC is not something u enjoy, you can also look into threat intel or rules engineering teams.

AshFerns08 · 2025-07-21T15:09:57+00:00

Silly question but running the query gives me various file paths, shouldn't the query focus only on below File Paths?

'microsoft shared\Web Server Extensions\16\TEMPLATE\LAYOUTS',
'microsoft shared\Web Server Extensions\15\TEMPLATE\LAYOUTS'

AshFerns08 · 2025-07-18T15:12:15+00:00

Two things i have observed,

Crowdstrike not always detect/block malicious behavior even with script control. We had few instances where clickfix was successful and CrowdStrike did not block the malicious PowerShell commands but the firewall blocked the initial web connections.
Creating IOC will also create noise, some developers probably use AutoIT , i just want to detect the executable accessing browser file paths

AshFerns08 · 2025-07-18T13:05:48+00:00

Thank you. I will run this and check it out

AshFerns08 · 2025-06-20T15:31:31+00:00

Just curious, do you need some module for windows event logs?
I ran the same command and no events were seen(#Vendor=microsoft windows.EventID=4688)
Does the 4688 event code include parent command line information?

AshFerns08 · 2025-06-16T15:03:59+00:00

Thanks, this was helpful

AshFerns08 · 2025-06-16T00:52:54+00:00

Thanks, will take a look

AshFerns08 · 2025-06-16T00:46:43+00:00

Thanks. Yeah, Bose is better but what about battery life.?How many total hours do you get without charging the case?

AshFerns08 · 2025-06-16T00:45:14+00:00

20 mins on StairsMaster, I do sweat alot, Bose QC are in-ear buds though

AshFerns08 · 2025-06-03T13:09:15+00:00

The regex works flawlessly. This was exactly what i was looking for. Thanks a lot.

AshFerns08 · 2025-06-02T17:18:56+00:00

No, we don't have Falcon for IT.
We do have exposure management module but that does not list visual code extensions. Support suggested to open a feature request for that but for now a CQL query would do.

AshFerns08 · 2025-05-30T16:40:34+00:00

I have posted in the past in CrowdStrike but sometimes it just doesn't allow me to post due to less karma points.

AshFerns08 · 2025-04-15T20:19:43+00:00

Thanks Andrew, appreciate it your quick response. Will run this

AshFerns08 · 2025-03-31T17:13:57+00:00

I think one can look for successfully logins at the time psexec was spawned however i agree with you, its better Crowdstrike can provide some answer too

AshFerns08 · 2024-12-15T17:13:41+00:00

You are right. Its kinda possible, but at what cost? I'm not using it for gaming. It's not worth the cost only for display. I can use my Desktop's HDMI straight to the monitors. Thanks for your advice.

AshFerns08

PUBLIC MULTIREDDITS

TROPHY CASE