BlueTeam

The Post Ransomware Brain Dump

 30th July 2024

The environment:Windows 10+, VMware 8u2, SentinelOne, Fortigate Fw 7.0.15, Unsecured VPN tunnels to biz partners The Good:+Cove backup w Cloud really good. Attackers will wipe local backup repo. Caveat; when…

πŸ“Œ
0πŸ’¬ read more

OS Hardening Guide

 15th July 2022

https://github.com/decalage2/awesome-security-hardening#windows

πŸ“Œ
0πŸ’¬ read more

HowTo Disable SIP/VOIP helper/alg on Fortigate

 5th July 2022

Disabling SIP ALG see here https://voipdocs.io/en/articles/316-disabling-sip-alg-on-a-fortigate-firewall

πŸ“Œ
0πŸ’¬ read more

Windows Updates via Powershell

 4th June 2022

PS C:\share> $RemoteServer = “wtf005.wtf.local”PS C:\share> Get-WindowsUpdate -verbose -computer $RemoteServer -AcceptAll -InstallVERBOSE: wtf005.wtf.local (7/14/2022 3:26:58 PM): Connecting to Microsoft Update server. Please wait…VERBOSE: Found [19] Updates in pre search criteriaVERBOSE:…

πŸ“Œ
0πŸ’¬ read more