I spend a lot of time looking at screens saying “oh for f@$!’s sake” under my breath. #blueteam with a hint of dfir and a pinch of security engineering
It’s like the product manager of MS Teams wanted to say fuck you to each user in a personal way. It’s very unique to see everyone complaining about a different UX issue but no 2 complaints are the same.
a new form of recruiter emerged. added me on linkedin, figured out the company email, then sent a job opportunity to the COMPANY EMAIL with shit ton of typos, then had the audacity to follow up… to company email!!! #infosec
1\ #DFIR: Chrome Forensics - How to Recover CLEARED History
If a user just cleared their browser history, you can still recover everything they were just looking at from the session files:
%appdata%\Local\Google\Chrome\User Data\Default\Sessions
https://t.co/FaDbeJwhQC
@lpha3ch0@_rybaz tried to “harden” DCs once with no dedicated admin and my fuck-all AD knowledge. You can imagine how that worked out lol so it’s much easier to exploit rather than fix
@lpha3ch0@_rybaz Yup, especially smaller-ish companies. Never seen a person responsible for one system. I have seen security peeps sysadmining on top of their ops, or sysadmins being responsible for 9-10 different systems with maintenance every damn weekend. but never the other way around
@_rybaz do you… do you have a dedicated admin for AD? like, full time? please tell me that’s not a common thing or I might need to go find a dark corner to start sobbing for next 4 hrs
vettel was driving like he stole it on those last few corners! actually, did anybody check where is that car now? what a fucking legend #vettel#Formula1
@DeweyRitten or, do i have tools tracking messages? if not, maybe exchange admin has a powershell query to see who got the email if we are using exchange