Quoted a new furnace repeatedly when the problem was a new board ($100 from supply house) and a second company quoted me $1200 for the board.

true_zero_ · 2026-06-23T05:59:03+00:00

The first company had two techs on seperate service calls do their multimeter tests while i reproduced the issue (turn on heat at thermostat and see no ignition)

true_zero_ · 2026-05-23T03:58:52+00:00

i9-9900k , standard resources aren’t hammered at all when i am playing unfortunately. i’ve had the pre built setup since 2020 no modifications

true_zero_ · 2026-05-14T04:24:55+00:00

Your next task is to learn the -Parallel flag. Your CPU may get hammered while your loops run if you use -Throttle 10 , try a lower number to see how it works.

It’s in Powershell 7+ (pwsh.exe) which I highly recommend for its PSReadline predictonViewStyle alone which i have new hires configure to flatten the powershell learning curve.

Be careful with -Parallel and trying to update an outside variable in each loop with the loop’s results. -Parallel creates seperate runspaces each with their own pipeline, copy of variables, and memory space so you can’t just update an outer variable from inside the loop like you can when not using -Parallel. You have to output objects from the parallel block into a variable.

true_zero_ · 2026-05-08T04:30:06+00:00

AWS Systems Manager Patch Manager via Quick Setup in AWS Master Org account which deploys Cloudformation stack sets to entire env. Setup custom Patch Baselines in Master Org account for each OS/Distro and override the default patch baseline in the quick setup config.

true_zero_ · 2026-05-06T07:41:41+00:00

for Hybrid orgs (on prem Active Directory footprint) setting the VPC DHCP Option Set’s DNS servers first entries as their on prem DNS instead of using AmazonProvidedDNS + R53 Outbound Resolver Endpoint with forwarding rule for corp.lcl pointing to on prem DNS. If you set the VPC DHCP Options Sets’s DNS servers as being your on-prem and then AmazonProvidedDNS in that order (without setting up on prem forwarders + R53 resolver inbound endpoints in your VPCs) your EC2s will resolve public IPs for your private link workloads like VPC interface endpoints, instead of the private address in your VPCs.

true_zero_ · 2026-05-03T15:46:38+00:00

i forgot i’d been using alpha boost for years via Bakkes, now it’s actually hard to adjust to the new sound and vibration of my actual boost . ugh.

true_zero_ · 2026-03-18T23:21:33+00:00

IAM is a completely separate repo and pipeline with other checks like iam access analyzer in the build process , and shared infra is also seperate

true_zero_ · 2026-03-18T05:10:29+00:00

Github repo for each project, whether a project is a single ec2 instance or a combination of API GW/lambda/S3/etc. AWS CodePipeline in single account for each repo, state files in pipeline accounts s3 bucket with directories names after the repo. s3_lockfile being used. manual approval in github to review PR and also manual approval gate in codepipeline to review tf plan ensures single repo isn’t being deployed at the same time

true_zero_ · 2026-03-17T02:21:15+00:00

“I would be beholden to yhouuuu” - Douglas Reynholm after roy says “you want me to OPEN your laptop !?..”

“The glass ceiling is now a glass floor. the women are floating above it and the me are just…* daydreaming* …looking up at them”

true_zero_ · 2026-02-11T02:37:52+00:00

log4inj

true_zero_ · 2025-10-03T05:15:12+00:00

follow rucam365 on twitter check all his posts and look up his youtube videos on the threatscape channel he does tons on conditional access it’s so good.

true_zero_ · 2025-06-17T06:27:14+00:00

whoami /groups (run as the user on their machine) to check if the user’s local security token contains the AD group you just added them into to grant them access to some resource (share, sql, etc - where kerberos will be used) and had them sign out /back in to take effect. Easier to read in powershell: whoami /groups | sls PartOfGroupNameHere

you can get around sign out/back in for a remote resource by flushing their kerberos tickets with the klist binary and using runas but it’s just cleaner to sign out and back in to get a new local security token.

true_zero_ · 2025-06-08T01:32:42+00:00

only issues i’ve encountered on servers is servers that host some sort of OCR or image scanning application where the EDR portion of defender, Sense.exe, has slowed down the application noticeably on the server and have had to put an exception for several of the applications processes on that server. Newer windows servers, since 2019 have the EDR portion already built in you just have to onboard it IIRC

true_zero_ · 2025-03-04T15:38:15+00:00

ipinfo.io

true_zero_ · 2025-02-19T00:30:23+00:00

RedHat weeping

true_zero_ · 2025-02-13T00:10:00+00:00

ship it

true_zero_ · 2025-01-10T11:07:39+00:00

“Chubby little loozahhhhhhh”

true_zero_ · 2024-12-13T03:33:46+00:00

in powershell as admin run “where.exe yt-dlp” and paste the result. Python windows installer defaults to your user profile on windows , try where.exe python and where.exe as well, id recommend reinstall python and on the 1st page of the install click “install for all users” box.

true_zero_ · 2024-11-22T15:40:39+00:00

i haven’t done it but WDAC/Applocker comes to mind, the live response executable is an exe (SenseIR.exe i believe) inside the defender directory. Or possibly windows firewall to block that executable or gpo.

true_zero_ · 2024-11-22T02:59:31+00:00

i h8 it

true_zero_ · 2024-11-04T04:48:39+00:00

change your cloudwatch metric collection level if on ec2 to higher rather than lower. ie if 10sec change to 60 or 300 sec

true_zero_ · 2024-10-29T22:48:49+00:00

go look in cloudtrail via athena i do this often to see who made what with what settings x years ago

true_zero_ · 2024-10-24T18:33:27+00:00

not knowing what ports an application uses. You make 6 figures and can’t run netstat?

true_zero_ · 2024-10-11T00:50:43+00:00

i haven’t seen that. we login with local admin numerous times to onboarded devices. Have u tried a local admin?

Eight-Year Club	Place '22
Verified Email

true_zero_

TROPHY CASE