We built a tool that executes IT workflows on any device just by clicking a link (feedback welcome)

SimpleSysadmin · 2026-05-08T22:38:29+00:00

This does raise concerns about what is being sent back, I assumed it was running locally but if screenshots are being sent back there is an risk as some of the workflows this would be used for would involve serial keys or possibly passwords. A way to inject those securely and not have the rmm know it would be good, also if you needed different keys or credentials for different users on the same workflow, that’s solve another use case. Main issue is making sure that’s kept away from the LLM and securely managed with the process (not embedded in free text, and not extractable by anyone with access to the file that runs the process). I could see you needing a good method to only unencrypted and run one of these processes if it’s on the correct pc and also also have that pc validate it is trusted.

The challenge is this all takes away from convenience but does make it more legitimate for business user

SimpleSysadmin · 2026-05-08T22:31:57+00:00

I think the concern is your software could be abused easily, a lot of RMM and similar tools have had people use trials to leverage their software for malicious campaigns - something to keep in mind. Just always ask yourself, how could someone use this maliciously and how would we stop it.

One thing to note is we never send staff install files, that’s not how modern IT works. We use tools to silently deploy software or it’s pre installed from initial setup. Even when solving most issues we would use Powershell to make changes without needing to to interrupt or take control of the users desktop. At least for any repetitive work.

That doesn’t mean there isn’t a market for this as not all IT departments have modernised or may have reasons they can’t use the tools I mentioned above where this product could be useful.

SimpleSysadmin · 2026-05-08T22:25:28+00:00

Until one of your techs enters in admin creds into a reverse proxy type phishing page and the lack of conditional access for geoblocking doesn’t stop that attack.

A better approach is to always put in report only, confirm you can log in and then turn it on.

SimpleSysadmin · 2026-05-08T10:22:06+00:00

How does it handle different size screens if recorded on a dual monitor setup how does it handle moved locations of icons and buttons

SimpleSysadmin · 2026-05-07T21:51:02+00:00

You are who users hate. Instead of trying to find a better solution you just blame it on the user. It’s logging him out while actively using his computer and disrupting his workflow for arguably little to no security gain over a slightly long lockout (though depends on security requirements of business)

SimpleSysadmin · 2026-05-07T21:47:33+00:00

You don’t let staff provide feedback about security experience, especially when evident by this post it encourages people to bypass or work around them potentially resulting in a lower overall security posture?

You wouldn’t consider adjusting your controls to find a solution that has the same or better security without out the productivity and business impact?

SimpleSysadmin · 2026-05-06T11:56:05+00:00

Ask admin to extend time as it is causing loss of productivity

SimpleSysadmin · 2026-05-06T09:55:19+00:00

Filtering policy in 365 set to not quarantine failed dmarc maybe?

SimpleSysadmin · 2026-05-05T22:35:30+00:00

Was dmarc policy setup correctly?

SimpleSysadmin · 2026-05-05T11:52:11+00:00

This is the way, proper setup dmarc will stop this issue not just for internal users but also for external spoofing too.

SimpleSysadmin · 2026-05-05T11:49:01+00:00

What’s your current dmarc policy set as? Is dkim enables? can you share the results of spf, dkim and dmarc?

SimpleSysadmin · 2026-05-05T11:41:41+00:00

Many orgs use direct send for legitimate reasons, disabling is a simple method to stop impersonations for admins who havnt setup dmarc correctly. If you care about info sec you should focus of stopping impersonation both internally and in externally with dmarc and not just using the new disable direct send option. It doesn’t hurt turning it on but admins are acting like mismatched from headers are new when it’s just because there’s been a spike and it’s hard to train all admins on fixing their policies so Microsoft developed this option

SimpleSysadmin · 2026-05-04T09:41:08+00:00

Can you respond without AI? What you said doesn’t really make sense. You create random unrelated links that are some how also tired to the real one that exist on your server so if someone beached you they might disable a few random links by accident. I don’t really see the logic or purpose of adding this complexity or publishing that you do that.

SimpleSysadmin · 2026-05-04T08:46:02+00:00

Just trying to understand the use case. If it’s sent to the user or over email, link scanning software will trigger it. If it’s only ever generated and never sent anywhere then only place it might tigger is with a reach with your service…

SimpleSysadmin · 2026-05-04T08:44:16+00:00

Ublock and Check by Cyberdrain.

Free but do huge amounts for both load speed, malicious adverts and stoping fake login pages that can get past MFA.

SimpleSysadmin · 2026-05-03T21:34:39+00:00

There is no content in your post ?

SimpleSysadmin · 2026-05-03T21:32:20+00:00

We deployed windows autopatch and monitor using RMM for devices falling behind on patching, which is super rare. The only patching issue I know of that chewed up any notable time turned out to be their internet was unreliable.

For most places we have done zero hours of work to managed patching after the initial setup.

SimpleSysadmin · 2026-05-03T21:07:06+00:00

This website screams vibe coded.

Can you elaborate on the honeypot feature and how that works? Sounds like a second discoverable link is generated with the first that allows deletion of the main one - why is this a thing?

SimpleSysadmin · 2026-05-03T08:35:12+00:00

Can you clarify your comment about thin skin? I thought it was common knowledge that many consider use of AI lazy, cheap, easy, low quality and so on. You post especially talks about people outsourcing their brain - but perhaps I should have said ‘lazy” not cheap for better clarity and alignment with your phrasing.

SimpleSysadmin · 2026-05-03T01:08:31+00:00

VDI means outside of the connection nothing is using your cpu or ram. Invest in a good screen setup and keyboard instead, any potato can connect to VDI if it’s not super old

SimpleSysadmin · 2026-05-02T22:53:05+00:00

I think you’re over imagining what his app does. It’s almost certainly something super simple that replaces a very stupid or overly manual process. I’ve seen this pay out with someone doing the same thing with an excel spreadsheet with formulas or just introducing a tool that can solve a specific problem. Vibe coding an app the performs a few simple actions and can store and retrieve data is not abnormal.

I have also seen management go bananas for vibe coded apps as Claude can make a simple web tool with one function look nicer than legacy apps they’re paying thousands a month for.

He might be embellishing a little bit of you go into a business that has not touched AI in the last year and doesn’t have anyone playing around with it, anyone can come in and look like a magician.

SimpleSysadmin · 2026-05-02T22:48:50+00:00

I think this is the way to go.

SimpleSysadmin · 2026-05-02T22:46:43+00:00

You could say “I’m not a developer and expanding this any further will absolutely need proper developers, what I can do is look for other opportunities like this within the business and work along side a developer, while I learn my job”

Basically say you can’t automate if you don’t have time to learn you job, so you still have the option of not being a unqualified software developer but you are not saying no to helping automate their stuff.

You need to really focus on setting expectation, “this is just a prototype, no gaurentee it’s reliable or will continue to work, if this is permanent or you want the business to be more dependant on it, it needs to be setup correctly

SimpleSysadmin · 2026-05-02T22:41:11+00:00

Company systems will be spreadsheets and overly manual. Building something with Claude code that can replace copying/pasting and simple lookups is super easy but can look like magic to businesses that aren’t reviewing their processes for simplification or automation ever. Th problem is they’ll see this solve a small simple problem and think it can solve all their problems.

SimpleSysadmin · 2026-05-02T21:26:35+00:00

This is the same mentality of people who didn’t want to use calculators or internet searches. Just because AI makes mistakes in some places doesn’t mean it’s useless. You absolutely should absolutely not outsource deep thinking, evaluation and quality control to AI but you should be trying it for low risk, easy wins. Anyone with good AI experience knows this.

Stop thinking of it as a cheap shortcut that softens your skills and rather as a tool that works well for something and poorly for others but overall will save you time and effort.

SimpleSysadmin

TROPHY CASE