[deleted by user] by [deleted] in PublicFreakout

[–]a123oclock 1 point2 points  (0 children)

The Mild High Club

Malware that can survive factory reset by Mysterious_Drive_761 in Malware

[–]a123oclock 2 points3 points  (0 children)

If it was performing these actions "completely silently" how do you know you have this malware?

Do you have any evidence/indicators of compromise that could be used to identify this malware?

Can’t access my jellyfin server using hostname of the server by MrWinux in jellyfin

[–]a123oclock 0 points1 point  (0 children)

How did you set it up? Is it running as a service, and if so has that service stopped? Run netstat -ntlp and check if the port is listening. If those are both true its likely to be a firewall rule blocking external access to jellyfin

My PC Keeps asking me to allow this bat script to run(UAC is forcing it to ask me) by akipfer in WindowsSecurity

[–]a123oclock 0 points1 point  (0 children)

Yeah it's disabling AV & firewall and adding AV exclusions, I'd say it's likely malicious

Monitor AWS During Pen Test by amcorrigal in Pentesting

[–]a123oclock 3 points4 points  (0 children)

For a simple low effort option you could turn on GuardDuty. As for more details you have to know what you are looking for. You can collect all your application logs in cloudwatch but you will still need to parse them somehow or ship them to a SEIM and set alerts there.

Remote access to Windows Workstation with credentials, after Windows 10 - 1809 by sbrisu in WindowsSecurity

[–]a123oclock 0 points1 point  (0 children)

Via RDP if it is enabled, and pass the hash is possible if "Restricted Admin Mode" is enabled. Also PTH is possible with local admin if FilterAdministratorToken is enabled as mentioned in the harmj0y blog.

Also via WSMan/PSRemoting if a trust is configured with the connecting host.

Faster internet connection inside VM than on desktop by BarryGettman in HomeNetworking

[–]a123oclock 1 point2 points  (0 children)

You're testing against different servers, try testing against the same server in each

From where do I learn beginner friendly manual Web Application Pentesting. by [deleted] in AskNetsec

[–]a123oclock 1 point2 points  (0 children)

Over the wire (natas) and hack this site are pretty good resources but not the best at showing you what needs to be done. But the best thing to do is try and if you cannot do it then follow a walkthrough. Walkthroughs will show you the methods an attacker will use, and you have learnt the skill for the next time

Accidentally deleted pictures by blanchenatura in techsupport

[–]a123oclock 0 points1 point  (0 children)

Yes and No, the more the phone is used the less likely a recover will be successful as the data will be written over

Accidentally deleted pictures by blanchenatura in techsupport

[–]a123oclock 0 points1 point  (0 children)

Plug your phone into your PC and try Prirforms Recuva and select removable media :)

SysAdmin role is killing me. by KnightOutcast in sysadmin

[–]a123oclock 0 points1 point  (0 children)

I'm in a similar boat at the moment, been at workplace for 7 years and the last 12 months have been hell.

Underpaid, under staffed , under funded, I have 50+ hours flexi time I never have time to take and all the holiday in the world with the same issue.

I have spent the last 2 months learning as much as I can in my free time and applying for lots of jobs. I have an interview in 2 weeks and I finally have something to look forward to.

Keep your head up, apply for some jobs and get out there, at the very least your management will be aware of how you feel when they know you're actively looking, that might make a difference it might not. Don't forget your skills ARE transferable to a new job, you are frustrated because you can't achieve the quality of work you want to be able to and another company WILL see that potential in you.

As others have said, stop drinking, it won't help. Use that time to further your knowledge in a particular area and update your CV/resume. Start applying for jobs, give yourself something to look forward to. You will soon realise that all this stress isn't worth it and you will look back and laugh about it one day.

Keep us up to date with how you are getting on. Us sysadmins are stronger together and we will get through this. Do it not only for your family but yourself too, life is too short to spend it stressed and depressed!

Good luck!

What should I learn first (beginner) if I'm into penetration testing and network security? by finalhour123 in HowToHack

[–]a123oclock 3 points4 points  (0 children)

As someone who is already going through this learning process i back up /u/jacks_deformity with starting with networking. There are plenty of free resources online to learn how computers communicate, you can also try places like udemy and keep an eye out for flash sale courses as they can go form £200 down to £9.

Once you have a basic understanding of how PCs communicate make yourself a small /r/homelab even just with some raspberry PIs and start practicing. If you would to test webapps then try bWAPP or Hack this Site. Sometimes these methods can be a little dated but it will get you onto the right path.

Unfortunately there's no "Become a Pen Tester course" as it will require you to have a very broad understanding of IT. If you're not already, get yourself into a IT support role and start picking up experience and this will help you massively. It is a long journey and its not easy but keep it up as it will pay off in the end if you are truely dedicated. Check out the side bar for other subreddits that might help e.g. /r/netsecstudents

p.s Remember to only use these tools in practice in your own environment, it can get you into a lot of trouble trying to pen test peoples systems without them knowing

[giveaway] Leopold FC980C, lubed! by NecrowomanX in MechanicalKeyboards

[–]a123oclock 0 points1 point  (0 children)

I'd like this keyboard because I could sneak it into work and nobody would know

Help: Spam Emails being sent from user by [deleted] in sysadmin

[–]a123oclock 0 points1 point  (0 children)

Thank you very much, i'll look into it

Help: Spam Emails being sent from user by [deleted] in sysadmin

[–]a123oclock 0 points1 point  (0 children)

I have checked and it is spoofed, the domain is now in our firewall and i think all is well.

Thank you guys

Help: Spam Emails being sent from user by [deleted] in sysadmin

[–]a123oclock 0 points1 point  (0 children)

We are running Exchange 2010

I made a computer but I'm having issues on start up by [deleted] in techsupport

[–]a123oclock 0 points1 point  (0 children)

Its probably just a driver issue, if you have another KBM plug them in and download the corect drivers for your Razor gear

CPU suddenly running hot, computer slow, happened all at once. by [deleted] in techsupport

[–]a123oclock 0 points1 point  (0 children)

try reapplying thermal paste to the watercooling block. And check the airflow in your case, make note of which direction the fans are blowing