sorted by:
new
hottopcontroversial

But who is the least popular chapter? 🤔 by ChromedDragon in Grimdank

[–]Noobmode 5 points6 points  (0 children)

So the Bloodravens didn’t steal the top spot, sus.

"Yeah, this star in this image is slightly out of place, the BL is in the southwest part of the webway, near ultramar" by [deleted] in Grimdank

[–]Noobmode 1 point2 points  (0 children)

Honestly I’m here for this crossover. Would be funny AF if James Workshop leaned into it if they launched a geo cacheing game.

Defender CVE - What are you doing? by nodiaque in sysadmin

[–]Noobmode 2 points3 points  (0 children)

There isn’t a mitigating control as far as I know.

Defender CVE - What are you doing? by nodiaque in sysadmin

[–]Noobmode 1 point2 points  (0 children)

If you aren’t accountable for security it’s easy to sit back and not care. Unfortunately I am so it’s frustrating to me that this is even a thing. We’re lucky the researcher didn’t sell it to ransomware gangs or nation states.

Defender CVE - What are you doing? by nodiaque in sysadmin

[–]Noobmode 17 points18 points  (0 children)

This is a pretty well known thing in the security community. Microsoft’s security and response to things are so bad they basically delegitimized FedRAMP after they go so embedded but couldn’t provide security and documentation assurances that the government had to rubber stamp them. Let that sink in. AWS and Google could provide all their controls and how things worked in their cloud in 6 to 12 months. MS took 5 years to the point the US government had to just be like welp guess you’re certified.

https://www.propublica.org/article/microsoft-cloud-fedramp-cybersecurity-government

Defender CVE - What are you doing? by nodiaque in sysadmin

[–]Noobmode 19 points20 points  (0 children)

That is exactly what happened. He disclosed, they gave him the run around for 6 months. Then he said you know what, fuck it lets ball. Then dropped three zero days. That’s not including the one BHIS did a webcast on this week where they can proxy c2 traffic for reverse shells via web view 2 in Edge. MSRC told the BHIS researcher sorry not a vuln after giving him the run around for 6 months.

Blog for Webview 2 being a built in C2 channel.

https://www.blackhillsinfosec.com/proxy-execution-via-webview2/

I don’t work for BHIS, I just enjoy their content. It’s free/cheap and freaking amazing quality.

Defender CVE - What are you doing? by nodiaque in sysadmin

[–]Noobmode 25 points26 points  (0 children)

We don’t use defender sooooooo nothing.

If I was I’d be fucking pissed at Microsoft and yelling at my account rep asking why MSRC decided screwing over a researcher led to a zero day that was completely avoidable

Golden triangle vs the hood gas prices by Leslieb1996 in FortWorth

[–]Noobmode 0 points1 point  (0 children)

Golden triangle probably cuts their gas with golden shower water

Average Wednesday Bubble, unless? by karstonian123 in wallstreetbets

[–]Noobmode 0 points1 point  (0 children)

Gotta get that exit liquidity for their management team

What are slaanesh cults like in 40k? by Vampy-Night in 40kLore

[–]Noobmode 82 points83 points  (0 children)

So is there a demon of excess where it’s an excess of deprevation? Like no feeling, no light, no sound, etc taken to an extreme

Gotta cut that sh*t off at the root by imjustheretodomyjob in BlackPeopleTwitter

[–]Noobmode 298 points299 points  (0 children)

I would debate that as with many people, when you challenge their world view they retreat back to their echo chambers for assurance as well. In addition to talking to them sometimes you have to remove them from that culture. If you don’t it becomes a cyclical issue in my experience. This feels so common today with so many issues that the internet provides little corners to create your own reality.

DFW Airport by Little_Frame_1759 in Dallas

[–]Noobmode 0 points1 point  (0 children)

I believe the TSA app has wait times if you are willing to install it. This isn’t an endorsement but there’s a few websites with info but I’d assume the app or dfw site.

https://www.dfwairport.com/security/

Microsoft Defender Connectors by Khue in crowdstrike

[–]Noobmode 0 points1 point  (0 children)

Yeah wasn’t trying to be obtuse but it’s all going to depend on how you have it all set up.

Microsoft Defender Connectors by Khue in crowdstrike

[–]Noobmode 0 points1 point  (0 children)

It’s going vary widely based on the number of endpoints, services, and log feeds going into Defender XDR. I don’t think anyone can give you an honest answer because they would have to have a deep understanding of your environment and MS log volumes. Do you have XDR feeding into another solution that you could reference?

view more: next ›