/os/ - Online Security

News, techniques and methods for computer network security.

Boards | Catalog | Bottom

Check to confirm you're not a robot
Name
Email
Subject
Comment
Password
Drawing x size canvas
File(s)

Remember to follow the rules

Max file size: 350.00 MB

Max files: 5

Max message length: 4096


Welcome to Online Security the place for internet and computer security, privacy and anonymity.
If you have some helpful tips please feel free to share your ideas. Start a new thread, or contribute to an existing thread.


Meta Thread Endwall 07/12/2016 (Tue) 12:03:36 [Preview] No. 171 [Reply] [Last 50 Posts]
Post any comments, concerns, or requests for the board in this thread.
Edited last time by Endwall on 07/12/2016 (Tue) 12:15:00.
31 posts and 6 images omitted.


Endwall 12/30/2018 (Sun) 16:55:44 [Preview] No.1358 del
>>1347
Revenge_is_a_dish_best_served_cold
https://youtube.com/watch?v=5vwHLMs04XA [Embed]
Baby_it_s_cold_outside
https://youtube.com/watch?v=7MFJ7ie_yGU [Embed]


Endwall 07/03/2019 (Wed) 07:55:36 [Preview] No.1429 del
I can't seem to access the Discussion Thread It's 404-ing. Anyone know what this is about?


Anonymous 12/02/2020 (Wed) 15:24:36 [Preview] No.1587 del
You still here Endwall (Or anyone else really)? Have you got any other places where discussion is being maintained considering that both /os/ and /tech/ on here are dead wastelands at this point?

Fuck I should've never been so apathetic. Real shame too considering how rare good /tech/ communities are at this point.


Endwall 12/17/2020 (Thu) 01:10:09 [Preview] No.1589 del
I'm still around. Endchan has been inaccessible by the onions (v2 and v3) for me for the last week or so. I just decided to try the .net version just now. I'm around, but I mostly lurk on nano and lain and some other places. I find that the quality of discussion is higher on nano in general. I check back here >>>/os/ and in >>>/h4x0r/ and >>>/tech/ every week to see what's new.

I haven't really been active in development or in security discussions for the last 3 months due to school. I just finished my final exams for the semester today. I was also in 3 group projects where my group members literally did nothing all semester. I had to do all the work and carry 3 people up a mountain on my back in three different group projects. These fuckers forced me to use Facebook messenger (caprine) and discord to communicate with them for the group projects and then proceeded to literally contribute nothing to the assignments and projects, which we "collaboratively" worked on in MS Office 365 and One Drive, in Word and Excel documents. They promptly shared my solutions for the assignments with their classmates in other groups. I tried to plead with these assholes to join me on Element/Matrix (forget XMPP or IRC not happening with these retards), no go. Then we had to do a group presentation by Zoom. I left my camera off, but they got my voice. This is like a turbo nightmare.

Feel free to add any security related info the threads. It's been like a one man operation around here for the last year or so. I'll make some more posts later.


Anonymous 01/20/2022 (Thu) 03:29:04 [Preview] No.1767 del
endwall, how are you? If I remember, you were the guy on 8/tech/ that talked about being stalked in real life and surveillance etc. How did that turn out for you? I've always wondered because you drew a lot of attention (primarily negative attention) and I always hoped you'd get better

If you're the wrong person i'm sorry



Welcome to Online Security: Sticky Thread Endwall 07/13/2016 (Wed) 03:11:01 [Preview] No. 181 [Reply] [Last 50 Posts]
Hello and Welcome to /os/, Online Security. This is a board for the discussion of online security, privacy, anonymity, and news from cybersecurity and privacy world.
RULEZ
1.Follow the global rules
2.No Spam
3.No Classified Documents or leaks of Classified Documents or Files (News articles, or commentary about the documents or files is OK)
4.No Child Exploitation Material
5.Images should be safe for work and relevant to the post or thread, commentary can be NSFW
6.No Advertisements of Hacker Services or Solicitations for Hacking Services
Related Boards
tech >>>/tech/ Hacker >>>/h4x0r/ Security Concepts>>>/sec/ EndSoft >>>/endsoft/
Privacy Guides
https://thetinhat.com/index.html
https://archive.is/zq2Ip
http://crypty22ijtotell.onion/handbook/
http://yuxv6qujajqvmypv.onion
http://deepdot35wvmeyd5.onion/security-tutorials/
Software Recommendations

Message too long. Click here to view full text.

Edited last time by Endwall on 07/13/2021 (Tue) 22:51:04.


Sticky Bump Endwall 10/23/2016 (Sun) 18:54:40 [Preview] No.624 del
TOP BUMP
Additions:
TENS , https://www.tens.af.mil/lipose.htm , US Air Force Live CD <-- online banking for mom and dad.
LibertyBSD http://libertybsd.net/ , https://libreboot.org/docs/bsd/openbsd.html
Edited last time by Endwall on 07/31/2019 (Wed) 07:19:36.


Sticky Bump Endwall 04/30/2017 (Sun) 03:29:12 [Preview] No. 894 del
Heads https://heads.dyne.org/ http://fz474h2o46o2u7xj.onion ; Devuan non-systemd version of Tails (Disclaimer: Website/Project uses occult language with communist signals)
Devuan https://www.devuan.org/ http://devuanzuwu3xoqwp.onion
Systemd Free http://systemd-free.org/
Edited last time by Endwall on 10/07/2017 (Sat) 03:03:59.


Endwall 06/01/2017 (Thu) 08:14:41 [Preview] No. 933 del
Mozilla Firefox Hardened Profile
https://github.com/ghacksuserjs/ghacks-user.js



Endware Endwall 05/03/2016 (Tue) 08:54:28 [Preview] No. 32 [Reply] [Last 50 Posts]
Endware is a suite of programs geared towards internet privacy, security, and anonymity.

Endwall: endwall.sh is an iptables based firewall script designed to be implemented on any linux distribution shipped with iptables. endwall.sh is based on default drop policies, coupled with a novel strategy of passing packets on local host ports only for those enabled by the enduser. It comes with a variety of well used ports enabled with several additional port passing configurations available by uncommenting the script. It provides essential security to a new user.

Endsets: endsets.sh is a script that adds blacklisting and whitelisting functionality to endwall.sh. It depends on the program ipset. It is persistent on reboot if you enable ipset as a service. This is the recommended blacklisting tool for endwall if you are running a server or planning on opening up ports and services to the public and will require daily blacklisting of new incomming IPs.

Endlists: endlists.sh is a traditional text file list based blacklisting and whitelisting script. It has slow performance, and can't be updated on the fly. Good for <1000 ip subnets, very tedious and slow to run for more than that. Blocks the IPs by adding them as individual rules to the iptables ruleset. Works but not recommended for heavy duty on a server. May be useful for workstation use to block ip ranges if you are not opening up ports and services to public clients.

Endtools: endtools are a collection of scripts including alogz.sh, mlogz.sh, spamlogz.sh and iplookup.py. These scripts will help to service an enduser of endwall in adminstering endsets/endlists.

iplookup.py is a geoiplookup script written in python and requires python and pygeoip. It has simmilar functionality to maxmind's geoiplookup program and uses the maxmind *.dat files.

spamlogz.sh is a script that searches through log files to find flagged log entries flagged in endwall.sh, endsets.sh and endlists.sh.

alogz.sh is a daily log reading script designed to read the output of an apache http server's log output.

mlogz.sh is a daily log reading script designed to read the output of a postfix smtp server's log output.

Message too long. Click here to view full text.

Edited last time by Endwall on 02/25/2019 (Mon) 00:18:53.
267 posts and 3 images omitted.


Anonymous 09/30/2021 (Thu) 02:37:56 [Preview] No.1750 del
>>1748
Btw, did you forget to update the revision date or has it actually been not updated since 2016?


Endwall 09/30/2021 (Thu) 07:06:10 [Preview] No.1751 del
>>1750
Which file are you looking at? It could be either or. Probably hasn't been touched since then. Last thing I updated was endstream.sh and winstream.bat last weekend, I think I updated the version #s and dates but I'll have to check. I have to update endstream_bsd.sh to fix the RT streams that switched recently I'll do that after I'm finished my homework, I have stuff due on Monday.


Endwall 09/30/2021 (Thu) 07:59:22 [Preview] No.1752 del
It might also be a typo in the header or maybe I forgot to update the rev date.
The rev date for endwall.sh is rev_date="17/07/2018", but it says July 17, 2017 in the header which is a typo. I'll fix that later. Some of the files haven't been touched since they were originally created after a couple of revisions. Some of the files were working in the past and then something changed and now they're not working, but they haven't been updated or fixed ex. proxyload.sh . I work on what I feel like working on when it occurs to me to do something about it.

The things I use the most are endwall.sh, endlists.sh and endsets.sh,alogz.sh, mlogz.sh, spamlogz.sh, iplookup.py, check16.sh ,check8.sh, endfix.cf, and endtorrc for my the torrc on my servers. I also use oldtube.sh, endtube.sh, endget.sh, endcurl.sh and endloads.sh , when downloading stuff frequently. I use endstream.sh, winstream.bat and endstream_bsd.sh a couple times a day to check the news or if I get bored. endtv.sh was the prototype that endstream.sh was built on based on tv channels from filmontv. endradio.sh is an internet radio behind torsocks program. Many of the radio channels have died / switched streams so it needs an update, probably a project for Christmas. pdfclean.sh was a pdf cleaning and PDFA format enforcing script built from instructions posted in >>/tech/ by another user. pdfmerge.sh is a script I used to finish a homework assignment, I felt it might be useful to users so I added it, merging pdfs comes up every once in a while. endnode.sh is a script to determine the final exit node in your tor chain, I use that every now and then to check and see. condense.sh, renum.sh and rmdupes.sh were built from user requests / specifications. endstream.m3u8 was a user request, it needs to be updated badly but I don't have the time right now again maybe over Christmas.

I use endstream.sh a lot so it usually will get an update within a day or two if a channel breaks. I usually have 2-4 deliverables due each week for school, so that takes precedence, and Endware is hobby-ware for the weekend.

This software (script) collection was an attempt to automate some of my (and other people's) ideas about best practices for performing downloads and stuff anonymously using tor or with obfuscation (proxies, randomized download timing, and user-agents). Endstream is accidental software that isn't really related to the project goals, and doesn't provide viewership anonymity, but I use it daily so I added it to the collection.

What's there is what's there. If I have an idea I'll try to make something. I think that for messaging endfix.cf and endmail.sh can take you far. The mail address posted on the hidden service hasn't been up for a couple of years and I should probably remove that from the html. I'll put a new hidden mail service up when I have some time, again probably over Christmas. Until then just use the protomail address, or post something here to get my attention. The hidden service website is hosted under my desk in my room at home. My power has been shut off in sequence multiple times, and my identity is known to the Government(s).

I have a very dark view about the future of computer privacy, and anonymity. It's a completely solvable problem (theoretically), but it won't get solved for the masses because of convenience and inertia. And most of the people who think they have it solved are delusional.


Endwall 10/29/2021 (Fri) 05:10:58 [Preview] No.1757 del
endwall_raspi.sh
I set up a rapberry pi 4 model B on Raspbian 11. I modified endwall_wifi.sh, and got it working. I have uploaded the iptables configuration that works for the raspberry pi on Raspbian 11 Bullseye and called it endwall_raspi.sh.

http://nguipxnkrp3qrzrlduhsatpcpwehnblzmlkc5ifiumxq4z5jlh4lwvid.onion/endware/endwall_raspi.sh

I tested endstream.sh from wifi and it works well. The audio works as well through HDMI. This will make a good multimedia streaming device.

Also Debian 11 bullseye switched their firewall system from iptables to nftables, so I'll be looking into translating endwall_wifi.sh into nft,sometime in the future, probably over the summer if I have time.


www.facebook.com edward henry rabe 01/20/2022 (Thu) 18:52:00 [Preview] No.1768 del
hello good am.pm



Online Security News Endwall 07/07/2016 (Thu) 06:09:23 [Preview] No. 149 [Reply] [Last 50 Posts]
See a news article or CVE bug report on an emerging computer security issue and want to share it? Post below.

I will also post links to Hak5 Threatwire videos.
Edited last time by Endwall on 07/07/2016 (Thu) 16:22:47.
493 posts and 3 images omitted.


Endwall 05/13/2021 (Thu) 03:11:10 [Preview] No.1725 del
Hak5
Colonial Pipeline Hit With Ransomware; Apple AirTags Hacked - ThreatWire
https://youtube.com/watch?v=QjLvIDWnc3w [Embed]
May 11, 2021
A Qualcomm SoC could be exploited by attackers, the US’s biggest gas pipeline is hit with ransomware, and Apple AirTags get hacked!

https://www.cnet.com/news/fbi-says-darkside-hacking-group-responsible-for-pipeline-cyberattack/
https://threatpost.com/pipeline-crippled-ransomware/165963/


Endwall 07/13/2021 (Tue) 23:03:13 [Preview] No.1731 del
Hak5
7 Year Old Linux Flaw Newly Discovered - ThreatWire
https://youtube.com/watch?v=12oSZ3FVXBA [Embed]
Jun 15, 2021
"EA Source Code was Stolen, a 7 Year Old Linux Flaw was Discovered, and 1.2 Terabytes of Data was Mysteriously Stolen from millions of Windows pcs!"


Endwall 07/13/2021 (Tue) 23:06:15 [Preview] No.1732 del
Hak5
PrintNightmare Hits Windows, REvil Kaseya Ransomware Hits Businesses Worldwide - ThreatWire
https://youtube.com/watch?v=iCGuqW7NL9U [Embed]
Jul 6, 2021
"3 Vulnerabilities were Found In Netgear Routers, Ransomware Hits Businesses Worldwide, and PrintNightmare Leads to remote code execution attacks!"
Edited last time by Endwall on 07/14/2021 (Wed) 00:54:52.


Доброго вечера DAVENSIZER84 01/09/2022 (Sun) 04:49:23 [Preview] No.1765 del
No Spam 3 year ban
No Spam 3 Year Ban (WIDE)
Edited last time by Endwall on 01/18/2022 (Tue) 01:10:17.


Свежие новости Adamoym 01/11/2022 (Tue) 08:47:30 [Preview] No.1766 del
Где Вы ищите свежие новости?
Лично я читаю и доверяю газете https://www.ukr.net/.
Это единственный источник свежих и независимых новостей.
Рекомендую и Вам

Translation to English: Where do you look for the latest news? Personally, I read and trust the newspaper https://www.ukr.net/. It is the only source of fresh and independent news. I recommend it to you
Edited last time by Endwall on 01/18/2022 (Tue) 01:12:51.



Youtube Replacements Endwall 06/11/2016 (Sat) 08:29:50 [Preview] No. 78 [Reply] [Last 50 Posts]
Google engages in sophisticated datamining of your video viewership. Youtube is also a prism service provider.

List any substitutes for youtube for use with youtube-dl or endtube below:
43 posts omitted.


Endwall 01/10/2021 (Sun) 01:32:39 [Preview] No.1592 del
Youtube Replacements
Bitchute
https://www.bitchute.com/
Brighteon
https://www.brighteon.com/

These work with endtube / oldtube


Endwall 01/10/2021 (Sun) 04:05:28 [Preview] No.1593 del


Anonymous 10/23/2021 (Sat) 07:53:11 [Preview] No.1756 del


Anonymous 11/21/2021 (Sun) 07:48:31 [Preview] No.1763 del



Secure OSes Anonymous 05/09/2016 (Mon) 18:21:17 [Preview] No. 37 [Reply] [Last 50 Posts]
What is the best OS option for a secure setup?
How do OpenBSD and Linux with patches compare in terms of the security they offer?
81 posts and 1 image omitted.


Anonymous 08/26/2021 (Thu) 21:58:28 [Preview] No.1742 del
Linux 5.10 Kernel Contributors.


Anonymous 08/30/2021 (Mon) 04:23:56 [Preview] No.1745 del
(316.77 KB 705x825 linux_committers_v3.png)


Anonymous 11/05/2021 (Fri) 21:25:36 [Preview] No.1758 del
When it comes to the desktop model of computing, Linux and BSD are not as secure as you think:

https://madaidans-insecurities.github.io/linux.html
https://madaidans-insecurities.github.io/openbsd.html

Some valid points raised there. If security is paramount, use Qubes OS. Alternatively, use ChromiumOS with all telemetry disabled and enjoy bottoming for Big G.



System Resources Endwall 07/05/2017 (Wed) 03:13:35 [Preview] No. 965 [Reply] [Last 50 Posts]
I have some observations to make.

## I just tested these systems:
MS DOS 6.22 runs in 384K of memory (1994)
MS Windows 3.11 runs in 2MB of memory with a full mouse driven GUI (1994)
Macintosh OS 7.53 runs in 7.4MB of memory , full GUI + TCP/IP (1996)
Macintosh OS 8.1 runs in 13.2MB of memory, (1997)
Macintosh OS 8.6 runs in 26MB of meomory, (1998)

OpenBSD 6.1 starts in text mode command line in 27MB of memory
OpenBSD 6.1 in Xenocara uses 65-80MB of memory to start up.

## from recollection:
Windows 7 800MB of memory (2009)

Parabola GNU/Linux starts in text mode cli using 150MB of memory
Parabola GNU/Linux in weston uses 300MB of memory

Message too long. Click here to view full text.

Edited last time by Endwall on 07/05/2017 (Wed) 03:17:31.
11 posts and 3 images omitted.


Anonymous 09/27/2017 (Wed) 21:38:23 [Preview] No.1038 del
I don't want to sound cliché but I suspect great part of the RAM in parabola is thanks to systemd.

Don't give up on GNU/Linux, there are some distros that take it to extremes to cut the packages to minimum. Source Mage in particular has the philosophy of only including what you want, nothing more, and the sources are clean and untouched. I don't have access to my installation but as soon as I get it I will post results, meanwhile look at how some guy went to have a graphical environment with 97MB.


Endwall 07/12/2018 (Thu) 08:34:29 [Preview] No.1247 del
Fresh install of Parabola/GNU/Linux-Libre/OpenRC

On an Intel core2 laptop

boot into cli from OpenRC

$ free -h

used 60 MB

start xorg as root

# startx

# free -h

used 75 MB

Message too long. Click here to view full text.



Endwall 08/20/2018 (Mon) 23:04:48 [Preview] No.1274 del
Alpine Linux on OpenRC
Fresh install on encrypted lvm with the services it said to start in the wiki guide. In command line on busybox.
$ free -m
120MB.

I couldn't get X org to start, but it would probably add another 20MB on top of that.


Endwall 08/20/2018 (Mon) 23:11:21 [Preview] No.1275 del
Hyperbola with linux-libre-lts on OpenRC is similar to parabola. Boots into user account in command line in at around 100MB xorg adds another 20MB ontop to around 120MB. Booting into a user shell seems to be more memory expensive than starting as root.

I want to boot to command line in no more than 20MB with a GUI that brings me up to no more than 40-50MB of memory usage. Any more than that and there is too much going on.


Endwall 08/15/2021 (Sun) 04:30:05 [Preview] No.1738 del
Gentoo Linux (2021)
Gentoo Hardened 10.3.0-r2
Linux/x86 5.13.10-gentoo Kernel

text mode: 51 MiB

Fresh install running with Btrfs on LVM on LUKS. Hardened Gentoo amd64 no-multilib stage 3,70 packages emerged. Running dm-crypt, iptables, lvm and bash. Could probably trim it down to 40MiB with some other choices (shell, daemons etc). I think this is going to be as good as it gets for Linux (for me) without changing things drastically. Maybe I'll switch my shell to ksh or dash or something else and see how it performs.



OPSEC Endwall 08/23/2016 (Tue) 01:08:39 [Preview] No. 357 [Reply] [Last 50 Posts]
Discuss best practices for operational security.
22 posts omitted.


Anonymous 03/21/2019 (Thu) 09:13:24 [Preview] No.1383 del
nice try grandpa
are you aiming for privacy, anonymity, security? VMs are unreliable from a paranoid security standpoint due to complexity, nevertheless if they provide anonymity, it may be worth it against larger foes that can compromise security with their access to exploits. Similarly with Tor Browser Bundle, sometimes it is better to blend in rather than to obscure your identity. a hoodie will be less conspicuous than a facemask.
>>1249
>don't post modern photos except PNGs because of exif
you can strip exif data using 'exiftool' and other solutions. I have heard stories about cameras having hidden codes (and more likely, repeatable and detectable design flaws) that can be used to identify the module, but that's real rumor oojie boojie
>avoid all digitized vehicles
avoid vehicles especially with push-button ignition, vehicles with a disabled wireless unlocking mechanism would be preferable but there are vehicles with an option to disable the keyless wireless fob.

>>1248
>don't use social media
endchan is social media
>use a cheap private vpn
use someone else's vpn, don't leave a paper trail of payment leading to your credit card
>do not buy green appliances
enjoy getting vanned because your electricity company can tell when you're browsing the internet via the smart meter. green is just a color, but energy efficient appliances are easier to run off battery power and/or solar power sources.
>>1167
>responding to phishing attempts at all

Message too long. Click here to view full text.



Anonymous 03/29/2019 (Fri) 21:15:48 [Preview] No.1385 del
(91.93 KB 400x400 glownigger.png)
Don't use smartphones.


Anonymous 05/03/2021 (Mon) 06:22:08 [Preview] No.1722 del
I'm not an expert but I have an IQ over 9000.
How I might attack a password.
A. List attack
I will get a list of "common passwords" derived from compromised user password list (the user account you made in ten seconds, 5 month ago because some Jew webpage made you).
>"12345678" and "nopassword".
B. low entropy Brute force of the password list
Common passwords with one character variance, common passwords with 2 character variance.
>1234s6789, Nopassword1
The site made you add a symbol and a number, I'm so scared.

It's only if you got this far that any real effort has to be made, honestly if you're not special I will just give up and find a stupider person.

C. dictionary attack
Instead of guessing gibberish I will use whole words.
Long passwords are often made up of whole words and at this point I know your password is fairly long.
There are far more words in any given language than characters (this BTFO's Chinese users incidentally).
Many common phrases will already have been covered in A. "common passwords"

Message too long. Click here to view full text.



Anonymous 05/28/2021 (Fri) 03:07:17 [Preview] No.1727 del
(16.96 KB 474x496 Gentoo.jpg)
Install gentoo


Endwall 08/15/2021 (Sun) 03:52:23 [Preview] No.1737 del
>>1727

I just finished installing Gentoo with btrfs on LVM on LUKS and spent 15 hrs configuring the kernel parameters to get iptables working with endwall.sh . I have to add some more stuff for IPv6 to make it fully compatible with endwall.sh.

Here is my layout:

http://nguipxnkrp3qrzrlduhsatpcpwehnblzmlkc5ifiumxq4z5jlh4lwvid.onion/content/gentoo/layout.txt

sda is full disk encrypted OpenBSD 6.9, sdb is encrypted with unencrypted boot for Gentoo Linux.

Here is my current working kernel config:
http://nguipxnkrp3qrzrlduhsatpcpwehnblzmlkc5ifiumxq4z5jlh4lwvid.onion/content/gentoo/kernel_config.txt

you can copy this to /usr/src/linux/ and then overwrite .config , and run

$ su
# cd /usr/src/linux

Message too long. Click here to view full text.

Edited last time by Endwall on 08/15/2021 (Sun) 04:09:27.



(55.23 KB 1024x768 218.241.83.20_5900.jpg)
/vnc/ general Anonymous 02/25/2021 (Thu) 02:32:53 [Preview] No. 1598 [Reply] [Last 50 Posts]
Pwn the chink edition
Come explore the internet with other Anons
http://computernewb.com/vncresolver/
>4chan
pozzed
>lainchan
pozzed
Well let's give finalchan a go
107 posts and 13 images omitted.


Anonymous 04/21/2021 (Wed) 17:51:05 [Preview] No.1717 del
Has anyone figured out how to escape an X11 desktop (like "nobody's x11 desktop" in the title) in vnc?


Anonymous 04/22/2021 (Thu) 07:56:18 [Preview] No.1718 del
some oil thing
70.36.21.143


Anonymous 04/25/2021 (Sun) 01:50:24 [Preview] No.1720 del
>>1717
I don't think you can. I haven't found a app or software that hides your device name


Anonymous 06/11/2021 (Fri) 14:52:05 [Preview] No.1728 del
122.176.39.102 win

72.24.222.203 win10


Anonymous 06/18/2021 (Fri) 01:52:21 [Preview] No.1729 del
Dudes. Is shodan worth it?



Windows Security Thread Endwall 02/24/2018 (Sat) 02:29:59 [Preview] No. 1147 [Reply] [Last 50 Posts]
WINDOWS NT Security Thread

It turns out that MS Windows NT has an 80% market share in the Desktop Operating Systems Market (whatever that is...) So in all likelihood, if you work a job anywhere, you will be forced to sit down and work on one of these machines running this well known gem of an operating system. You probably won't have administrator rights, but that's OK, we'll make do.

In reality there is no Windows security but in this thread we will try to make life a little bit better even if it is just for a placebo effect. Also Windows hackers come and show us how you hack us up real good, and help our poor unprivileged users gain administrator rights without a password, so that they can install Mahjong. Windows Advanced Firewall, Registry Editing, Browsers, etc. Post all the tips and tricks to make Windows NT better than ever.
2 posts omitted.


Endwall 02/28/2018 (Wed) 04:27:01 [Preview] No.1152 del
>>1151

Also this thread can include information for securing and running ReactOS, which might suit some people's needs as well. I'll set up threads for other operating systems and how to set them up (IllumOS, DOS, etc) , as I bring them online to test a play around with. This will happen over summer, I'm jam packed with school stuff until spring.

Again such boards might go better in >>>/h4x0r/. I'll think about the best way to present the info. Again the focus will be on tip sharing for poweruser stuff (scripting, settings etc) and security (Crypto, filesystems, firewalls, etc) and network communications on each of the operating systems.


Endwall 03/30/2018 (Fri) 23:29:08 [Preview] No.1182 del
Preventing Windows 10 and untrusted software from having full access to the internet using OpenBSD

https://www.ibm.com/developerworks/community/blogs/karsten/entry/Preventing_Windows_10_and_untrusted_software_from_having_full_access_to_the_internet?lang=en

Whilst setting up one of my development laptops to port some software to Windows I noticed Windows 10 doing crazy things like installing or updating apps and games by default after initial setup. The one I noticed in particular was Candy Crush Soda Saga which for those who don’t know of it is some cheesy little puzzle game originally for consumer devices. I honestly did not want software like this near to a development machine. It has also been reported that Windows 10 now also updates core system software without notifying the user. Surely this destroys any vaguely deterministic behaviour, in my opinion making Windows 10 by default almost useless for development testbeds. Deciding instead to start from scratch but this time to set the inbuilt Windows Firewall to be very restrictive and only allow a few select programs to communicate. In this case all I really needed to be online was Firefox, Subversion and Putty. To my amusement (and astonishment) I found out that the Windows firewall could be modified to give access very easily by programs during installation (usually because this task needs to be done with admin privileges). It also seems that Windows store Apps can change the windows firewall settings at any point. One way to get around this issue could be to install a 3rd party firewall that most software will not have knowledge about and thus not attempt to break through. However the only decent firewall I have used was Sygate Pro which unfortunately is no longer supported by recent operating systems....


Endwall 05/08/2020 (Fri) 22:09:43 [Preview] No.1531 del
(8.42 KB 355x255 BitLocker.png)
Drive Encryption
BitLocker
I'm currently encrypting my 2TB files drive on D:\ and my 500GB C:\ Drive on windows 10 using Bitlocker. This is for if you have to work from home with "Sensitive Documents" or files from work, or if you travel with a laptop that must have windows 10 due to applications needs or other factors. If you encrypt your device, the damage from theft or loss is much smaller than if left unencrypted. I will post some links to show how to enable Bitlocker without a "Trusted Platform Module" hardware unit. You will use a password. Select a strong password using passgen with around 20-40 characters and write it down and store it in a safe until you can memorize the sequence. Bear in mind that nothing that you do on windows 7,8,10 etc is private. Use this only for work files and documents that you need to protect from physical interdiction, theft or accidental loss that you must use with or in conjunction with Windows or Windows applications.

https://docs.microsoft.com/en-us/windows/security/information-protection/bitlocker/bitlocker-overview

https://www.howtogeek.com/howto/6229/how-to-use-bitlocker-on-drives-without-tpm/

https://support.microsoft.com/en-us/help/4028713/windows-10-turn-on-device-encryption


Endwall 05/08/2020 (Fri) 22:28:39 [Preview] No.1532 del
Windows Defender Firewall

Go to the search tab and type firewall. Select windows defender firewall. Click on advanced settings. Block all incoming and outgoing traffic by default. Then wipe out all of the policies or click disable, better to click delete and remove them. Then add the policies that you need. Lock them down by application if need be. Play around with the detailed rules and use filters for programs, ports and ip addresses to get the desired effects for your network applications to work. Adding new programs magically changes your firewall settings, but go back and fix them after each new application install. Wipe out and delete all inbound rules. If you need to let inbound come in, then you should know enough about the application to configure it.
Block everything and only let out/in what you need to go out/in, specific programs, ports and ip addresses.


Endwall 05/08/2020 (Fri) 22:55:56 [Preview] No.1533 del
Windows Subsystem for Linux

Installation guide:

https://docs.microsoft.com/en-us/windows/wsl/install-win10

I installed Debian, seems to work well for some applications. I'll import endware and test some fo the tools out. If you install debian you can install a windowing server Xming or CygwinX

http://www.straightrunning.com/XmingNotes/

https://sourceforge.net/projects/xming/

Then you can install programs that work in Xorg server and call them from the command line and they'll pop up in windows on the desktop.

Bear in mind all of this is for convenience while you work on Windows, you can also access Linux tools in the shell and some GUI programs as well. Alternatively try Cygwin and CygwinX:

https://www.cygwin.com/

Message too long. Click here to view full text.