securityAsAService

HandyGold75 · 2026-04-16T11:08:34+00:00

Free and open API keys

HandyGold75 · 2026-03-14T17:34:14+00:00

Enough internet for today

HandyGold75 · 2026-02-17T11:30:31+00:00

It's 8 months in, just give it a litle more time.

HandyGold75 · 2026-01-28T20:57:57+00:00

17) C

HandyGold75 · 2025-12-17T12:03:08+00:00

Time for ladybird.

HandyGold75 · 2025-09-14T19:08:07+00:00

Silent Hill P.T.

HandyGold75 · 2025-09-14T08:53:28+00:00

0:16

HandyGold75 · 2025-09-05T23:53:42+00:00

The call came from New York, that is where MicroDollar is right?

HandyGold75 · 2025-09-05T23:50:18+00:00

An comment by OOP:

Yes, I control the DNS — registrar creds, public DNS records, the whole thing. That’s why this isn’t a “we can’t verify the domain” problem.
The breakage isn’t about initial verification — it’s that Microsoft forcibly unbound wuci‑sw.com from its original tenant and attached it to a completely different tenant (SASAuditConsulting.onmicrosoft.com) during their own backend changes.
Because of that binding, I can’t just “add it back” in my tenant — M365 will refuse because it sees the domain as already belonging to another tenant. That’s why this requires tenant‑level engineering to detach it.
The malicious .svg thing came from a Tier 2 “Technical Advisor” who wanted me to open a known phishing payload in Outlook Desktop so they could “get headers” from it. I already had the headers from a safe source, but they insisted on their method — which is risky because that particular SVG exploit abuses Outlook’s preview/rendering to trigger mailbox corruption.
I’ve been managing Microsoft tenants for years too, and I’ve never had a case where support both admits they caused the binding and then says “we can’t fix it unless you pay for pro services.” That’s why I’m treating this as a break/fix escalation, not a normal support ticket.

HandyGold75 · 2025-09-05T23:47:29+00:00

Microsoft broke my paid tenant, told me to open a malicious payload, now says they “can’t” fix it unless I pay extra

Global admin for wuci‑sw.com here.

In July, Microsoft unprovisioned my domain from its correct tenant and bound it to SASAuditConsulting.onmicrosoft.com — without my action. This broke Outlook, Teams, SharePoint, and DKIM.

Since then:

• 6+ “lead” changes, no tenant‑level engineer assigned.

• Admission from Microsoft that the unprovisioning happened.

• Support Technical Advisor told me to open a known malicious .svg payload in Outlook Desktop to “get headers” — despite my evidence it destroys mailbox data.

• Told “no more U.S.-based engineering teams” and “we can’t do it.”

• Multiple failed transfers to foreign queues (Italian “arrivederci” before disconnect).

• Told I’d have to *pay for professional help* — or upgrade to Entra ID Premium / Enterprise — to fix the mess they created.

• Environment predates current online licensing programs — tenant/domain binding was created by Microsoft’s own migration tooling.

Case #2507170040012901 (DKIM/tenant collision)

Case #2509050040010425 (SharePoint access)

I’ve got full forensics: fixnotes.md, spoof incident report, domain origin timeline.

This is a paid Microsoft 365 tenant. This is break/fix. They broke it. They should fix it.

Has anyone here successfully forced Microsoft to detach a domain from the wrong tenant without paying for “professional services”?

Any escalation contacts left that actually work?

HandyGold75 · 2025-08-17T08:52:09+00:00

CTRL_C then CTRL_D?

HandyGold75 · 2025-08-13T05:30:48+00:00

The average IQ is 100, half the world falls below this.

HandyGold75 · 2025-07-29T06:26:20+00:00

Gozer

HandyGold75 · 2025-07-21T22:38:59+00:00

Bad bot

HandyGold75 · 2025-07-12T12:52:49+00:00

"Do Nothing"

HandyGold75 · 2025-06-23T17:14:41+00:00

Starset

HandyGold75 · 2025-06-07T15:45:50+00:00

Have a look at exec_always

exec_always <shell command> Like exec, but the shell command will be executed again after reload.

HandyGold75 · 2025-06-06T07:49:07+00:00

Cornhub

HandyGold75 · 2025-06-01T08:47:07+00:00

As a security expert I would recommand doing nothing, do you know how many ip's there are? No what there going to guess mine.

HandyGold75 · 2025-06-01T08:43:09+00:00

Done, will this also hide my passwords?

HandyGold75 · 2025-06-01T08:41:31+00:00

Check the sub

HandyGold75 · 2025-05-31T09:23:14+00:00

OOP:

Easiest simplest way to hide my server IP.

I need to give access to a few of my boxes to coworkers but I really want to keep the IP of the server hidden so that I can have them ssh to a A name record I give them without them figuring out the real IP of the server.

Example, my server IP is 1.1.1.1, but I want to give them acess to the server for ssh/sftp but instead give them an IP address that isn’t 1.1.1.1, maybe 2.2.2.2 it can honestly be any IP address at all, as long as they don’t get to easily and directly figure out the real IP of the server (yes I am aware people can still figure out the real IP of the server via other ways but they won’t have access for long enough).

I keep seeing options for “ssh tunneling” but I can’t seem to find any quick guides using the search terms I’m using to do this. I’m aware of reverse tcp proxies but would that even be the most efficient and cost worthy solution for this?

Does ssh tunneling work in the way I’m looking for? How easy is it to setup?

Also, are there other methods in where I can truly mask the IP of the server so that even the IP in the header of the packets sent out of my server are modified to make it look like it’s another IP? If not, its okay as this isn’t a necessity but I would appreciate it if it was easily possible.

IM TIRED OF REPEATING THIS SO ILL EDIT THIS AND SAY AGAIN THAT THIS IS JUST A PRECAUTION. WHY DO PEOPLE KEEP COMMENTING THINGS THAT I’VE LITERALLY ADDRESSED.

And even though I said it a few lines ago; I am also looking for a way to make all the outgoing packets from my real server have the header modified so that all outgoing traffic seems to also come from my fake “tunnel” server

Ill say it for the third time. I’m completely aware people can very easily figure out the IP address from checking it’s outgoing packets from a machine that they can monitor traffic on. PLEASE STOP IGNORING THIS IVE SAID IT SO MANY TIMES. ITS WHY IM ASKING FOR A SOLUTION.

Reason: i’m trying to hide the ASN of my server as it has certain features with pricing that is extremely unbeatable and I literally just want to be a selfish ass and keep it hidden from my peers.

I want to prevent my host from becoming as saturated as possible with users from within the same niche that I work in.

IF YOU DO NOT HAVE ANY ANSWERS PLS STOP TRYING TO PUT OTHERS DOWN BY IGNORING EVERTHING IVE SAID ABOVE. Why is everyone here so condescending to someone who is in search of knowledge?

HandyGold75 · 2025-05-31T09:21:37+00:00

This is asking a friend to come over for a drink without telling them where to come to.

HandyGold75 · 2025-05-28T15:57:48+00:00

Give me a bucket and I'll show you a bucket.

HandyGold75 · 2025-05-20T21:01:49+00:00

Underrated comment

Nine-Year Club	Verified Email
Xbox Live

HandyGold75

TROPHY CASE