BlueTeam

The environment:Windows 10+, VMware 8u2, SentinelOne, Fortigate Fw 7.0.15, Unsecured VPN tunnels to biz partners The Good:+Cove backup w Cloud really good. Attackers will wipe local backup repo. Caveat; when…

https://github.com/decalage2/awesome-security-hardening#windows

Disabling SIP ALG see here https://voipdocs.io/en/articles/316-disabling-sip-alg-on-a-fortigate-firewall

From Local PC: PowershellInstall-Module PSWindowsUpdateset-executionpolicy remotesignedGet-WindowsUpdate -verbose -AcceptAll -Install Remote PC: PS C:\share> $RemoteServer = “wtf005.wtf.local”PS C:\share> Get-WindowsUpdate -verbose -computer $RemoteServer -AcceptAll -InstallVERBOSE: wtf005.wtf.local (7/14/2022 3:26:58 PM): Connecting to Microsoft…