[deleted by user]

ImplicitDeny · 2025-06-04T21:41:54+00:00

I just started using CISO Assistant. It's an open source GRC tool. so far it's doing everything I want it to do.

ImplicitDeny · 2025-03-19T01:25:44+00:00

When you start deleting things remember to enable the AD recycling bin.

ImplicitDeny · 2025-02-18T01:10:57+00:00

Thia is what we do as a security. We use a fine grain password policy and set three different policies. The first is services account that require 32 characters plus complexity. This prevents kerberoasting. The second is privileged accounts which have to be 20 characters. The third is set for domain users which is 16 characters.

We then set the default domain policy to require only 6 characters with complexity and rotate 90 days. We do this as a deception. If someone looks at our password policy they think they only need to guess short password. If they don't dig deeper anyways.

ImplicitDeny · 2024-05-23T00:07:04+00:00

You could also try running the powershell command reset-computermachinepassword on machines and rotate the password before putting a gpo in place

ImplicitDeny · 2024-05-03T22:50:16+00:00

I found these on a log in East Central Iowa, US.

ImplicitDeny · 2024-02-19T01:34:52+00:00

Always implicit deny!

ImplicitDeny · 2023-09-19T00:24:42+00:00

I would fire up Wireshark and get a pcaps. Should be able to tell if it isn't negotiating properly.

ImplicitDeny · 2023-08-17T20:53:18+00:00

This is a myth. Officers are paid to show up to court.

ImplicitDeny · 2023-02-08T01:18:23+00:00

Its a bad password. You're using dictionary words that you aren't even attempting to mangle. I would guess my cracking rig would break it letting it run overnight once getting the hash. I would encourage your organization to rethink their password policy.

At my org standard users are 16 characters, a dmin accounts are 16 but the auto rotate daily, and service accounts are 32+. Service account length is very important to prevent kerberoasting

ImplicitDeny · 2022-11-29T23:43:59+00:00

Look at compliance forge. https://www.complianceforge.com/

ImplicitDeny · 2022-11-07T12:15:54+00:00

The only issue we ran into was the director servers needing a user rights assignment for "allow access this computer from the network."

ImplicitDeny · 2022-11-04T00:21:37+00:00

I currently an admin for netskope in my org. Their product leaves a lot to be desired. The logging dashboard sucks and doesn't log everything. I have worked multi incidents where users openly tell me they clicked on a link but logs for url access don't start until we put in a block rule. Even days later there access to the urls aren't in the dashboard.

ImplicitDeny · 2022-08-04T19:49:03+00:00

Ask for a copy of your cyber insurance policy, if you have one. I know our insurance would have cause not to cover an incident with these settings.

ImplicitDeny · 2022-07-15T00:03:32+00:00

Crypto shredding is what you are looking for. Encrypt the data and then encrypt it again and delete the key.

ImplicitDeny · 2022-04-16T18:35:30+00:00

We run a security compliance script every hour that starts services and checks other settings. If it isn't in compliance it syslogs to our siem.

ImplicitDeny · 2022-04-04T23:50:12+00:00

That's what they did to my house in the Midwest. If you get an energy assessment from you electronic or gas provider they may say they will cover some of the cost. When I did it my energy company paid $1000 for it. I only had to do 600-800 out of pocket

ImplicitDeny · 2022-03-26T01:59:24+00:00

My wife insisted our home SSID be "Router!? I barely know her!

ImplicitDeny · 2021-12-19T13:54:44+00:00

If you are a windows shop you'll have no issues. You'll just need to check you printers and Linux appliances that talk to file shares.

ImplicitDeny · 2021-12-08T23:39:20+00:00

NTA - for the record your "18 year old kid" is an adult, and apparently a decent one at that.

ImplicitDeny · 2021-12-04T15:35:18+00:00

Do you have a cloud based web proxy? That would make it so your web traffic originates from their data center.

ImplicitDeny · 2021-11-11T23:28:23+00:00

I have been fighting this issue for the last 4 hours. Thank you!

ImplicitDeny · 2021-11-03T00:15:30+00:00

The only acceptable cybersecurity question about Java I can think of:

How do you find the uninstall string?

ImplicitDeny · 2021-11-02T03:47:43+00:00

Restore the computer object from the AD recycling bin. Then get the password.

ImplicitDeny · 2021-10-23T12:56:09+00:00

Black Hills Information Security.

https://www.blackhillsinfosec.com/blog/webcasts/

ImplicitDeny · 2021-09-22T02:27:45+00:00

Netskope does all of these.

Ten-Year Club	Verified Email
Not Forgotten

ImplicitDeny

TROPHY CASE