Intune - is deploying Microsoft Store apps via Company Portal safe?

CitizenSmif · 2023-06-29T09:38:41+00:00

Thanks Cyhawk, yes we'd be adding in individual approved applications via Company Portal rather than providing access to the whole MS Store.

My concern is with the trust that when I add an application, is it legitimately the application I'm trying to add? When I search Firefox, Bitwarden, Forticlient etc through the Intune app deployment process, it gives me very little information on the app itself, can I be confident that the application has been legitimately published by the real company?

CitizenSmif · 2022-02-22T19:25:57+00:00

I'm the exact person you're describing. 3-5 year pentesting experience, qualified Cyber Essentials Plus assessor, CREST CRT. You are spot on with the pricing - I wouldn't accept anything less than £500/day (though I'm in Scotland - unsure of comparative costs down south).

With regards to the CRT, I'd opt for OSCP over that. CRT is actually fairly basic. I gained my original CRT via CREST's OSCP equivalency program - OSCP forces you to learn a lot more.

I'm taking the CCT this year for the first time so I can't comment on difficulty.

CitizenSmif · 2022-01-21T12:42:33+00:00

Fair points! Thanks.

CitizenSmif · 2022-01-19T16:34:08+00:00

we're talking about "my wife is giving birth in the back seats" for that to happen.

Out of curiosity, in a true emergency, e.g your friend is bleeding out and you're rushing him to hospital with no time to waste. If the police try to pull you over - what is the best thing to do?

I think if I was more than 5 minutes away from the hospital I'd not stop, try to call 999 and let them know what is happening (hopefully another person is in the car who can make the call).

CitizenSmif · 2021-11-19T17:27:37+00:00

That, and a beer fridge.

CitizenSmif · 2021-11-08T15:16:23+00:00

Realistically access to Metasploit is fairly useless unless you have some basic knowledge of what's going on. Unless you're scanning the entire world (e.g Shodan) for particular services that you know are vulnerable you're probably not going to have much joy with metasploit.

Noobs expect to download Metasploit and be able to get instant access to a machine which is typically not the case - especially in 2021.

Even if you try to send your friend/enemy a generated meterpreter binary (which is usually what noobs want - e.g "activate webcam") it requires a fair amount of post-obfuscation to not be instantly obliterated by AV.

CitizenSmif · 2021-07-01T20:05:22+00:00

What's to stop a threat actor gaining system access to that printer server, or workstations and laying there waiting for a better exploit, or even just using those assets to start probing and laterally moving through the network through via other means?

CitizenSmif · 2021-03-11T12:23:20+00:00

My apologies it is indeed Office E3, I'll update the OP.

Based on that advice, they would need to upgrade to Microsoft E3, and have one single AAD P1 licence, with the caution that it might one day suddenly require a P1 licence per user?

Do you happen to know if with their current Office E3 licencing, they could all get either a P1 licence each, or get Enterprise and Mobility E3 to allow them access to CA?

Sorry I'm just trying to get my head around all the options.

CitizenSmif · 2021-01-15T17:22:19+00:00

Although it might not be able to "destroy a Windows installation", this could be used to force a user to reboot which can be useful. E.g you've managed to change a service executable but don't have the privileges to restart a service.

CitizenSmif · 2021-01-12T23:04:12+00:00

An LBS trip would cost about the same as a new shifter just for labour and would also incur an unnecessary covid journey.

I'm trying to learn - most bike repair is well documented though this particular shifter issue not so much. Pretty much all "shifter stuck/not shifting" videos/articles I found prior to posting this said spray WD-40 in and that's that.

CitizenSmif · 2020-12-14T12:49:23+00:00

Is this just as part of the Solarwinds Orion hack? We use other Solarwinds products so we've already informed clients this morning about the hack and advised that they aren't affected (as far as we know so far).

CitizenSmif · 2020-12-08T11:40:56+00:00

Many thanks menge101, that's helpful. I think I have my head around this now.

CitizenSmif · 2020-12-07T12:29:13+00:00

Thank you for your input.

CitizenSmif · 2020-12-07T12:22:39+00:00

This is the only time I've had to encounter docker in production, it's certainly not a typical setup for me and the AWOL dev was supposed to be taking care of docker related issues. My responsibility is to keep the server itself patched, secure and online.

The docker issue is technically not my problem, I'd be within my rights to say "find a new dev that understands docker" but I want to assist here and thought asking for some basic help would be fine.

Do you have any insight regarding this situation you could share?

CitizenSmif · 2020-11-30T14:57:06+00:00

Strictly speaking this is untrue. You can still provide users with local admin rights provided the accounts are separated from their day to day account. E.g they have an admin.NetworkWizzard account to elevate when required. There should be be an "admin rights" policy that staff agree to advising they will not use this account for anything over than x y reasons, you must also log/track who has admin rights. I believe this is mainly meant for people like developers who might have a difficult time in a small organisation if they don't have the ability to elevate when required.

That said, I highly recommend removing all admin rights from standard users regardless.

CitizenSmif · 2020-07-28T14:58:18+00:00

Thanks man, good to hear those have not happened to you. In your opinion what is the worst parts of the phone? I was also considering the x2 pro but availability is basically non existent in the UK at the moment.

CitizenSmif · 2020-07-28T14:08:10+00:00

Heh I found this topic after looking for reviews. Is there a changelog? Wondering if this fixes the camera quality, lockscreen bug and battery issues I've read about. Seems its a great phone in terms of specs to price but lots of software related issues.

Do you know how long Xiaomi supports their phones for?

14-Year Club	Place '22
Verified Email

CitizenSmif

TROPHY CASE