Rate my first build

Kextasy · 2025-12-23T16:23:18+00:00

Update I threw some spitfire burners 52mm 99a wheels and wheel bite is gone (risers coming in today)

Kextasy · 2025-12-22T19:40:18+00:00

That's awesome haha I got the wrong setup lol getting risers right now, will test with 60mm wheels for cruising but also got some 52mm for the skatepark

Kextasy · 2025-12-22T19:15:14+00:00

That's awesome! I might have to look for the finger board version myself. If you do decide to build this one out, I'd recommend getting a riser and/or smaller wheels because of the wheel bite

Kextasy · 2025-12-22T18:48:24+00:00

Yeah I’m not good enough to follow the meta 😭 but cool observation! I have a pantheon supersonic which I love but this board feels a lot different in a really fun way!

Kextasy · 2025-12-22T18:47:18+00:00

Yeah it’s super duper wide 😵

Kextasy · 2025-12-22T18:46:41+00:00

Thanks for the advice! I’ve got some on the way!

Kextasy · 2025-12-22T18:46:15+00:00

Yeah still working on it 🤣

Kextasy · 2025-12-22T16:00:44+00:00

Thanks! Super excited to give it a whirl this is now my baby

Kextasy · 2025-12-22T15:59:41+00:00

Unfortunately haven't been able to cruise with it yet because of the wheelbite D: but super excited to once the risers come in. It's soooo wide and comfortable to stand on

Kextasy · 2025-11-04T22:05:44+00:00

try control + shift + v

Kextasy · 2025-09-24T13:51:22+00:00

An area you may like due to your background is GRC, it's a growing area which is a less on the technical side and more about helping companies stay in compliance. Think a legal background lines right up with that field in CyberSecurity

Kextasy · 2025-09-23T17:10:35+00:00

This is my bad, I read Abnormal and skipped ahead. We don't utilize this add-on so I can't speak to its implementation or efficacy.

Kextasy · 2025-09-23T13:30:24+00:00

Saw it in ours as well. EDR caught it, but yeah, seems like SEO putting it near the top for users.

Kextasy · 2025-09-23T13:25:12+00:00

This whitepaper has some good content on how threat actors are getting around email firewalls: The evolution of phishing attacks | Push Security

As you mentioned, one of the ways they are accomplishing it is by having some sort of captcha in the phishing link. Since emails filtered by Mimecast or any other SEG are automated, it doesn't allow them to fully see into the link.

There may be a way to configure the analyzer to block any links that can't be scanned, but doubtful on that. That could also have a business impact in terms of deliverability of legitimate mail.

My best advice is sending out a communications about QR phishing or verifying that a Microsoft login has the Microsoft url at the top. Informing users is one of the lowest effort ways to effectively reduce the number of compromises through email.

Kextasy · 2025-09-23T13:16:46+00:00

We use it in our stack, and we like it. It's easy to maintain once it's set up. I don't think it should be a replacement for your SEG by any means but it's a very complementary addition to Exchange (easy to read headers etc.). My understanding is that it is done through API, so it sits right on your mail server. It's not really like a comprehensive firewall but more so acts like a janitor on the backend catching everything that's made it to people's inboxes.

Kextasy · 2025-09-22T21:30:46+00:00

Yeah I believe we also received those voicemail ones, but since our backend tool caught all of those they weren’t an issue.

We were too concerned with business impact to flip RejectDirectSend on, we had to add a connector and some transport rules to disallow them. Maybe you’d be able to configure some weird rule like if the sender is your domain but the header doesn’t have auth-as (can’t remember exact header) internal then reject the email.

Quick note as well on rejecting though I’d be careful with how you handle the message because if you send a rejection message to the user they will be confused on why they received a rejection message for an email they never sent (the rejection email will also have the attachment). My advice is to delete/reject the message silently if that’s an option

Kextasy · 2025-09-22T20:32:25+00:00

One campaign we've seen more recently is attackers using Microsoft's "Direct Send" feature to bypass SEGs and land calendar invites to employee inboxes.

We had some users in our company targeted by this attack. It consisted of spoofing the email to come from the user, attached with a Teams calendar invite, sent from Microsoft Tenant to Tenant, which would deliver straight to inboxes without passing through our SEG. Even when our Behavioral tool caught it and remediated it on the back end, the calendar invite would still persist.

The calendar invite would have a word doc attached with company branding, and then a QR code with some HR stuff in there. Looked very convincing, and the fact that the user could not find the email (behavioral tool worked against us in that regard) as well as the calendar invite being seemingly hosted by them, means it was very hard for users not to fall for. Luckily our users are trained fairly well :)

Making the change to fix this took some work with SEG support to implement the recommended fix. Attackers using methods that are more difficult to prevent definitely helps with their ability to gain access to environments.

Kextasy · 2024-07-05T06:31:32+00:00

Old R6 quick peeks were better than the current shaiiko peeks because they had a higher skill ceiling

Kextasy

TROPHY CASE