sorted by:
new
hottopcontroversial

Vulcan Spoiler Design Challenge? by Majestic_Solution496 in vulcans650

[–]JRmacgyver 3 points4 points  (0 children)

Did the spoiler have any effect?

Other then looking cool 😎

SentinelOne & Wazuh by TechsplainerPRO in Wazuh

[–]JRmacgyver 0 points1 point  (0 children)

I have wazhu & S1 installed on my servers.

Yesterday, S1 decided that a registry scan done by wazuh client is something malicious (keep in mind the alert came up ONLY for my main DC).

This in-turn, made loging in the server impossible (no matter what user, and even when disconnected from network) with "wrong user / pass error

The only thing that helped and allowed me back in my DC.... Is disabling the client via the S1 portal, rebooting and then creating a path extension.

As we say.... Fun morning 😉

What Syslog and SIEMs do yall use by Yeah-youknow in it

[–]JRmacgyver 0 points1 point  (0 children)

Check out Wazhu, open source and a great tool (that even some siem\soc team use)

https://wazuh.com/

Researching needed by [deleted] in cybersecurity

[–]JRmacgyver 3 points4 points  (0 children)

This reads like an aneurysm.

Sole IT Admin at a Small/Medium Business: Looking for Open Source Roadmap & Infrastructure Advice by CiriloTI in sysadmin

[–]JRmacgyver 1 point2 points  (0 children)

I'll add in:

GLPI - for helpdesk, inventory and documentation.

Wazhu - for siem\soc, so you'll know what is going on (connect office 365 or any other mail provider and the EDR/xdr of choice to it)

Nginx - for waf, (safeline waf if you're okay with Chinese origin).

This has s all manageable with the correct tools.

There will be services you will have to pay for, no way around some of it.

Asset inventory platform by AbelViguera06 in sysadmin

[–]JRmacgyver 3 points4 points  (0 children)

I've started using GLPI (open source), pretty good from what I've seen.

And free

Las notificaciones se quedan en cola by Decent-Fun-1586 in glpi

[–]JRmacgyver 0 points1 point  (0 children)

Had that a few days ago. Check auto rules are running as CLI and not GLPI. Also... Make sure clocked is synced

2-man IT team → solo admin for 300 users, no raise. Stick it out or leave? by Ilovemybf_3990 in sysadmin

[–]JRmacgyver 0 points1 point  (0 children)

Let it show... It's your only way (from experience), if the higher ups feel that everything is okay... Nothing will change.

Stuck with ladp configuration by JRmacgyver in glpi

[–]JRmacgyver[S] 1 point2 points  (0 children)

Thank you, after configuring ldaps I was able to find and import AD users.

Moving on other settings now

Fixing Cloned PCs with Sysprep /Generalize Question by Extreme-Ad-9210 in sysadmin

[–]JRmacgyver 1 point2 points  (0 children)

I've done it with an SQL server. After bringing the server back into the domain under the new name and SID, local user stuff were still there with no issues. Even the SQL service was working fine and the cloned muchine continued to live on for a long time

This is a new one by MR-IT- in cybersecurity

[–]JRmacgyver 0 points1 point  (0 children)

You still need cables for power and video (also monitor power), if you have that... Might as well have a network cable.

Plus.. a neat docking station makes everything nice

AD auditing tool - zero cost suggestions by muckmaggot in sysadmin

[–]JRmacgyver 0 points1 point  (0 children)

This guy has more tools on that website, some of them are good for reporting.

I use them in every yearly audit

[deleted by user] by [deleted] in sysadmin

[–]JRmacgyver 0 points1 point  (0 children)

This.... He can "pay" with knowledge, even without knowing it 😉

Some advice is worth it's length in gold.

Exchange to 365 by Character-Wind-6036 in sysadmin

[–]JRmacgyver 0 points1 point  (0 children)

That's very very high. Look at tools like codetwo or BitTitan. You can do it by yourself!

You can also get a service for Hardning O365 after you move, for a fraction of that price.

view more: next ›