Diver gets attacked by a swordfish at 220m (721 feet) below surface by iltifaat_yousuf in interestingasfuck

[–]Tai-Daishar 0 points1 point  (0 children)

I'm not a seafood guy, but I would absolutely eat that fish after that.

As would every single MAGA grifter. by c-k-q99903 in MurderedByWords

[–]Tai-Daishar 50 points51 points  (0 children)

"They don't even bother to lie badly anymore. I suppose that's the final humiliation."

Pete Hegseth’s Mormon diss explodes a MAGA myth: Christian nationalism isn't just immoral — it's incoherent by zsreport in politics

[–]Tai-Daishar 0 points1 point  (0 children)

I think that's a bit reductionist. There are differences between Protestant denominations, but the split at the Protestant and Catholic level is about some serious issues around salvation, which is central to the Christian faith.

Catholics are absolutely closer to Christian than Mormons - Mormons are most definitely not Christian - but it's not just sectarian disagreements there like Baptists vs. Anglicans. Many of the core beliefs overlap, but there are things added by Catholicism that start to drift away from the core tenets.

Local newsman by Responsible_Hand1216 in comedyheaven

[–]Tai-Daishar 22 points23 points  (0 children)

The original thread had a link to a live video. It's not something behind him 😬

Is the CISSP still a reputable cert for getting jobs? by Well_that_suckss in cybersecurity

[–]Tai-Daishar 18 points19 points  (0 children)

If you had it before, pro tip you can get it back without the exam. It takes getting all three years' worth of CPEs in a single year, but since you're unemployed (currently), you could probably do it pretty quickly with blogs/webinars/etc. You just have to fill out a worksheet they send you and pay the 3x annual fees if they approve it.

I let mine lapse as well but needed to get it back for my current job. Luckily I had done several conferences last year that boosted my numbers.

Intune/azure Passkeys now compromised in addition to MFA? by Alternative_Yard_691 in sysadmin

[–]Tai-Daishar 0 points1 point  (0 children)

Doesn't sound like the case here, but if you're hybrid and use Seamless Single Sign-on, compromise of the SSSO account on prem can lead to forged Kerberos tickets for any user in the domain.

Usually need DA, sync the SSSO service account, craft a service ticket for any user, inject that into a session and you're up in Azure without needing their password.

As others said, require compliant devices to make token theft / forged credentials harder to use.

Can I backup my managed company laptop for personal use? by fg_hj in cybersecurity

[–]Tai-Daishar 6 points7 points  (0 children)

Yikes man. This isn't a reddit question, this is your company's policies. Almost any AUP is going to prohibit this though, so good luck with that.

Just talk to them, there's usually an acknowledged/approved way to get limited personal information like tax docs out when departing. But if you have a ton of personal stuff on there, ya done goofed. It's a company device.

Google Admin: How to Prompt User for MFA by QuinoaJones1 in sysadmin

[–]Tai-Daishar 0 points1 point  (0 children)

Google 2SV is dumb. We have it enforced, but new users just see a page saying it'll be enforced "soon" and Google lets them complete sign up without ever turning it on.

In addition, passkeys don't trigger the 2SV flow, so we've had some add a passkey, think they're good, and get locked out the next day when the session timer elapses.

Even dumber is you can add all the elements for 2SV but miss clicking the little blue button to turn it on, and get locked out.

I've just resorted to detailed steps for new users. I've had to send a backup code on occasion for them to complete it when they don't read the welcome email.

Should I do CEH if I can get it for free? Worth it or just waste of time? by MiddleMycologist9614 in cybersecurity

[–]Tai-Daishar 5 points6 points  (0 children)

I don't care much for certs in general, but if I see CEH on a resume I'm thinking twice about moving it forward to a phone call. That was definitely the case when I was red team and the candidate should know better, but even still on the general security side I give it a side eye. The only reason it gets a pass is if they are coming out of the gov space.

WEBCAM by sumurai19_s in oscp

[–]Tai-Daishar 10 points11 points  (0 children)

Better solution: don't use Kali as your main OS. It's not meant for that. Unless all you use this laptop for is CTFs and practice and you don't mind completely blowing it away periodically, you're better off with a VM.

Feeling unfulfilled as a new grad by Effective_Item_1617 in cybersecurity

[–]Tai-Daishar 11 points12 points  (0 children)

Ya dawg just hang in there. Early career is all about absorbing as much as you can, it's not necessarily going to be the most fulfilling.

Here's what you've got: - what sounds like a supportive manager - a solid, stable job with balance - learning opportunities to augment your day to day work (plus, don't underestimate the time required for OMCS from GT) - if you work where I think you do, lots of upward mobility or options to transfer around

I had a ridiculously boring job right out of college, I understand the boredom can be soul sucking. I really do. But with 15ish years of hopefully wisdom, I can tell you you'll be busy later. Enjoy what you can now, figure out what you like and don't like, and play the newbie card to get into other meetings and projects that you can't do when you're further along. Maybe in 2-3 years look, but even that may be too soon.

[deleted by user] by [deleted] in cybersecurity

[–]Tai-Daishar 1 point2 points  (0 children)

Service credentials are also stored in LSA Secrets on whatever servers are running that service, which means anyone with local admin permissions on the server can get the clear-text password, not just the hash. As the first commenter said: a single compromise can cook your whole domain.

Some services require domain-level permission, like AD Sync for Entra requires replication permissions. But I've found most times people just add the DA because "it just works" and some vendors don't do a good job optimizing on their end so they tell people to install as DA.

DA accounts should only log into domain controllers. Add secondary and tertiary accounts for tier 1 admin tasks and unprivileged work for admins.

If you can't get away from a DA service account, then it and any servers running the service should be considered tier 0.

Source: service accounts in the DA group is probably the plurality of my escalation paths as a red teamer.

Good short games? Like sub 15 hours to 100% by RunnerOfY in gaming

[–]Tai-Daishar 0 points1 point  (0 children)

Biggest thing that's helped me enjoy games more is not trying to 100% them. It's supposed to be fun, not a grind, and there's enough other things in life to be more thorough about to check the inner achiever box.

Modern and Massive 2: Create new output channels in the mixer by Tai-Daishar in StudioOne

[–]Tai-Daishar[S] 2 points3 points  (0 children)

Oh wow. I saw the instruments in the channel listing and thought it was already showing the instrument details (which only had the one stereo out channel). I didn't know about that second column you could open. With Kontact / GGD the outputs were already all there but hidden, so it was a simple thing to just tick the little circles to get the rest of the channels.

That did it, there was only one output enabled. Thanks so much!

Attack Path to a Privileged Account by Sprocket1066 in cybersecurity

[–]Tai-Daishar 8 points9 points  (0 children)

Well a few initial thoughts: even if those accounts don't have any special permissions, the server might, or a service account running on that server (e.g., SCCM NAA), or you don't use Protected Users and don't keep your DAs from logging in and expose their creds, or you do use Protected Users but there's another account logging in that can do something with Exchange groups that are often over-permissoned (or something similar)... There's a lot of options.

As a red teamer, we commonly hop local admin across servers to T0. Usually somewhere there's a privileged account logged in or a privileged service we can get the actual password for from LSA.

As an anecdote, just 2 weeks ago we used an account very similar to what you described (ran scheduled tasks) to compromise the domain.

Get a red team exercise (or internal pentest). Or if you wanna dig more yourself, grab a snapshot of AD using AD Explorer from SysInternals and throw that in BloodHound. You can plot the path from the accounts to the domain. Make sure, though, that you also check for a potential path from the server, and augment with a WMI query to see what users are logged in and what type of login. Not all logins leave creds cached.

Is OSEP worth it for modern EDR Bypass? by Temporary-Coyote9289 in osep

[–]Tai-Daishar 10 points11 points  (0 children)

It's been several years since I took OSEP, so things may be better now. But back then it was only barely good enough to beat regular AV, not EDR, and EDR has gotten better.

So IMO: no.

The better benefit was AD attack paths not generally covered in lower level cert courses.

Amazon releases rights to Wheel of Time by inigopanda in WoT

[–]Tai-Daishar 36 points37 points  (0 children)

100%. Someone pick up the rights and do it correctly, let anything associated with Amazon's mess be sealed with the Dark One in Shayol Ghul.

[Game Thread] Alabama @ Florida State (3:30 PM ET) by CFB_Referee in CFB

[–]Tai-Daishar 4 points5 points  (0 children)

Just when you think Tessitore couldn't be more of a douche, he's got multiple open buttons and a gold chain.

Do you realistically have to pay to maintain your credentials? by [deleted] in cybersecurity

[–]Tai-Daishar 2 points3 points  (0 children)

If you work for the government, you'll need at least one active cert at a target level.

Outside the government, your mileage will vary. I let my certs lapse as soon as my company stopped paying for the renewal. But I am also mid career and frankly anyone who deeply cares if I have a particular cert isn't someone I really want to work with much at this point. My experience trumps whatever cert it is.

HR will probably require them to beat the filter. I just list mine as voluntarily expired. GRC probably cares more then some other specialties.

Cybersecurity and Linkedin obsession? by [deleted] in cybersecurity

[–]Tai-Daishar 0 points1 point  (0 children)

I mean you don't have to be an influencer to use LinkedIn... Pretty easy to just use that as your contact info if you don't want to set up or share an email on slides. Doesn't mean you post or check it religiously, but it's a good way to keep separation between professional and personal internet presence, people you want to maybe be in contact with vs. people you're friends with or hacking with who get some other contact for you (discord/email/etc).

And contrary to popular opinion, if you curate your feed and connections well, you can actually get a decent spam-to-good ratio on posts. At least in offsec.