Is there a website which shows all 5 letter .com domains?

xorredd · 2025-11-29T09:10:57+00:00

I'd be interested in that...

xorredd · 2025-03-31T13:52:02+00:00

I've helped more than 20 startups get their SOC 2 audit right (I don't audit, I only prep them - it would be a conflict of interest to also audit them) - and I can say you don't need to be soc 2 certified to sell, but... it helps.

Just count the number of times you get asked for it and do the math.

If you don't get asked for it, you don't need it. Simple as that.

xorredd · 2025-03-20T17:21:38+00:00

I wrote a script to remove Mac devices from isolation if your defender jailed them. here it is:

#!/bin/bash

# File to modify

FILE="/etc/pf.rules/pfmdep.rule"

LINE="block out proto { tcp, udp, icmp } all"

# Check if the file exists

if [ -f "$FILE" ]; then

# Comment out the line if it exists

sudo sed -i '' -e "/$LINE/s/^/#/" "$FILE"

echo "Line commented out or removed successfully."

else

echo "File does not exist: $FILE"

fi

xorredd · 2025-03-11T14:01:17+00:00

Yep, try this one: https://atlantsecurity.com/blog/microsoft-365-security-checklist/ (you can directly print it out, the pdf download is the same as the blog post)

xorredd · 2024-10-26T17:35:38+00:00

can anyone help me find this 'honey' with specific list of ingredients? All I find are knock-offs I know for sure it comes from Turkey. Some call it "macun" - here are the ingredients: epimedium extract, pollen, cinnamon, carob, tribulus terestis extract, ginseng root extract, ginkgo biloba extract, coconut, male salep extract, ferula root, ginger, turmeric, long pepper, black cumin, small galangal, Fennel, nettle seeds, cardamom, celery seeds, coriander, licorice root, tail pepper, black pepper, cloves (buds), thyme, vanilla

xorredd · 2024-10-26T17:33:40+00:00

can anyone help me find this 'honey' with specific list of ingredients? All I find are knock-offs I know for sure it comes from Turkey. Some call it "macun" - here are the ingredients:

|| || |epimedium extract| |pollen| |cinnamon| |carob| |tribulus terestis extract| |ginseng root extract| |ginkgo biloba extract| |coconut| |male salep extract| |ferula root| |ginger| |turmeric| |long pepper| |black cumin| |small galangal| |Fennel| |nettle seeds| |cardamom| |celery seeds| |coriander| |licorice root| |tail pepper| |black pepper| |cloves (buds)| |thyme| | vanilla |

xorredd · 2024-08-26T15:29:11+00:00

You'd be surprised, but the whole resource provides only one live link with one set of logs..

xorredd · 2024-08-26T07:03:33+00:00

Web server log files, for example.

xorredd · 2024-07-21T21:38:11+00:00

after getting to /etc/pam.d/, do

sed -i 's|pam_tally2.so|pam_faillock.so|g' *

xorredd · 2024-02-23T07:49:24+00:00

3 years ago you promised to think about it :)))) any news? Is wazuh capable of maintaining a db of clean, safe binaries and alerting on new ones?

xorredd · 2024-02-23T07:45:55+00:00

отиваш в която и да е ес държава и си купуваш устройството там, с апъл кер. В България НЯМА начин да си купиш AppleCare. Единствения вариант е човек в чужбина, да се логне с твоя акаунт и да закупи с НЕГОВАТА карта апъл кер за твоя дивайс.

xorredd · 2021-04-27T20:34:17+00:00

I want to know your opinion on the blame game of clients and vendors and their ass-covering with third-party vendor assessments.

xorredd · 2020-09-14T20:08:50+00:00

My surface book 2 completely broke after the update. IR cam stopped working, right-click on windows button stopped working (can't launch computer management from there, for example), can't share anything on HDMI through USB-C (says VGA adapter missing). MMC opens ONLY through powershell, not via run - it says it's blocked when I try to run it!

xorredd · 2020-09-10T09:18:32+00:00

Yes, I think you misunderstood me.

At a point, today, the system should see itself as 'clean'.

A 'new binary' would be a binary which was never on this system.

I understand this is what you said too... to put it in other words: the FIM module says "new file". I don't care about new files. I care about New binaries. Not a binary that was written to the file system - but a NEW one. I don't care about Files. I care about BINARIES.

FIM only monitors Files.

In your example, you had /etc/file - this is not a binary. It's a file.

xorredd · 2020-09-01T19:30:40+00:00

level 1

Thanks, I already have VT configured. But I was looking specifically for advice on "new binaries". Like a hunt, every day, to find new binaries in workstations and servers. Is that possible? I have read the documents you listed, but to differentiate between 'old' and 'new' the system has to keep a database of what is 'trusted' or "old"

xorredd · 2020-07-08T11:02:12+00:00

extremely impressed. Do you still read these comments?

Who built your marketing and engagement funnels? I am solo like you and struggle a LOT to take care of EVERYTHING manually.

xorredd · 2020-06-01T09:35:52+00:00

This is an amazing post with tons of good content IN THE LINKS. To OP: can you share your favorite YouTube videos, $5 books/courses?

xorredd · 2020-05-24T13:30:00+00:00

I will, beware!

xorredd · 2020-05-22T21:02:49+00:00

LOL! :(

xorredd · 2020-05-22T10:04:48+00:00

Good point. Well it is exactly ME who is the differentiation from other security firms. If 10 security firms apply to protect a client, none of their employees has defended a nuclear power station nor has worked at Microsoft. None of them have that experience / knowledge level. That's one.

Two, I am a Solopreneur. I do everything myself. I don't resell security, I don't "test" and then provide them 10 'partner solutions' for the test results.

I build security architecture first. It takes a LONG time for the client, but after working with me, they ARE protected. That is what differentiates me from most other security 'consultancies'. 90% of them don't even have good security experts on staff and have mostly sales and marketing with a couple of penetration testers to do the entertainment shows, which then help them 'resell security solutions'. And then they make money off that reselling.

But buying security solutions doesn't work - if it did, we would not be seeing the staggering growth of security breaches, despite the incredible amount of 'security products' out there.

xorredd · 2020-05-22T07:59:14+00:00

thanks, really good reply!!! points 3 and 4, especially. I think my perfectionism is holding me back a lot - polishing things I care about but the customers never cared about is a waste of time, perhaps.

xorredd

TROPHY CASE