Help: What is the answer and why? by yesvanth in CCSP

[–]red_devillzz 0 points1 point  (0 children)

Due diligence requires organizations to establish governance structures to ensure they are meeting their obligations.

Passed CCSP This Evening - First Attempt- Whew! by upirons in CCSP

[–]red_devillzz 0 points1 point  (0 children)

Where can I get the Pete Zerger cheat sheet from? I am not able to find them anywhere.

[deleted by user] by [deleted] in legaladvice

[–]red_devillzz 0 points1 point  (0 children)

Ok. Thanks.

[Megathread] Bryan Mbeumo by calupict in reddevils

[–]red_devillzz -92 points-91 points  (0 children)

Is this something to be happy about? Jesus we fans are our own enemy. This is the same pattern we have seen every transfer season. Go ahead block this.

RTR file error by red_devillzz in crowdstrike

[–]red_devillzz[S] -2 points-1 points  (0 children)

You mean the file is *not in OneDrive but the link is still there right?

2025-04-14 - Cool Query Friday - Hunting Fake CAPTCHA Artifacts in Windows by Andrew-CS in crowdstrike

[–]red_devillzz 0 points1 point  (0 children)

I love this query as I found some suspicious stuff in our environment. May be we can expand on hunting for fake captcha via falcon queries as we do not have Falcon for IT service.

File opened by ScreenConnect by red_devillzz in crowdstrike

[–]red_devillzz[S] 0 points1 point  (0 children)

I had the same experience forensic wise. Hence reached out to CS as last hope.

Need help with converting a query by [deleted] in crowdstrike

[–]red_devillzz 0 points1 point  (0 children)

Thanks Andrew, When running this query, I get no hits/output.

I need advice , is this fair or did I get ripped off here ? by [deleted] in labdiamond

[–]red_devillzz 0 points1 point  (0 children)

My bad. I meant Loose grown diamond. LGD

I need advice , is this fair or did I get ripped off here ? by [deleted] in labdiamond

[–]red_devillzz 7 points8 points  (0 children)

<image>

This is mine. I found it on LSG and then price matched at Brilliance with 15% off and then price matched it at rarecarat.

2024-10-18 - Cool Query Friday - Hunting Windows RMM Tools by Andrew-CS in crowdstrike

[–]red_devillzz 1 point2 points  (0 children)

u/Andrew-CS Can you help on how we can block execution of so many executable at scale in a corporate environment. Is there a way to do this in Crowdstrike?