CptSC

@IAMERICAbooted It's always the FW fault everyone knows that, even when its DNS

@CptSC Security is constantly blamed because ops or iam implemented something without doing impact analysis and breaks something. When people dont know whats wrong, they always blame security.

@IAMERICAbooted I can't even manage to get a response most times from them

This has nothing to do with my boss. Im crying because I dread dealing with Microaoft Support

When your boss asks you to open another ticket with Microsoft

@jarwidmark @merill I bet this hardly scratches the surface

@merill 1.000,000 unique tenants? Dang, how many tenants are there in the world?

🔥 Maester 2.0 is LIVE! 🚀 And this one’s big. 💥 Over 1,000,000 Microsoft tenants have now used Maester 🤯. An insane milestone that shows what happens when open-source meets real enterprise impact. Yes, that's not a typo. Maester has been used in over 1 million tenants.

@FrillePelle Är det då i samband med start av fas 2, eller finns andra händelser som skulle utlösa utbetalningar?

God fortsättning, 2026 blir ett spännande år för Cantargia tror bolaget har goda chanser att uppnå alla dagens riktkurser (7-14kr) Närmst väntar jag på en milestone utbetalning från Otsuka som fyller på kassan ytterligare som redan idag räcker över 2 år $CANTA #IL1RAP

@RealDonKeith Some tried to do something when faced with it: news.sky.com/story/soldier-…

Sniper, Nick Irving, says 80% of Afghan men are homosexual and only use women to reproduce, not for pleasure.

@DebugPrivilege Salmon?

@awakecoding @NathanMcNulty Yes a daily unique pin code can be used for those cases

@CptSC @NathanMcNulty Can the EPM still work on devices that are temporarily offline, like if you take your laptop out on the plane?

I just learned that AdminByRequest has a secure remote access solution with a container image for web access and Cloudflare tunneling to reach the destination machines. Has anyone tried it? What are your thoughts? adminbyrequest.com/en/secure-remo…

@awakecoding @NathanMcNulty It can't be self hosted, it's a full SaaS offering

@CptSC @NathanMcNulty I wonder if I should just signup with a personal email account for the free tier. Can the EPM product be fully self-hosted or is it always dependent on a cloud service somewhere?

@NathanMcNulty @awakecoding Yes mandatory sign-up but free tier up to 25 devices

@awakecoding I don't think so, and you need their cloud console for configuration and reporting anyway I loved working with their API many years ago, built a bunch of reports so we could remove admin rights from the few hundred users that had it

@AdamGrossTX Automatic approvals and automatic deployment the weekend following patch tuesday with test rings the days prior.

Hey community, how do you manage your monthly server patching? For a 24hr shop, how do you manage server maintenance windows, patching, rebooting, etc? We’ve moved from #ConfigMgr to #Azure update manager and we use extension attributes to designate “patch codes” which dictate which patch window/group a server is in. Then we have a server team spending a night managing patching. Is this normal? We’ve got about 1200 servers globally.

@acjuelich @DecryptedTech @IAMERICAbooted Why be, we can't know everything 🙂. You would upgrade the schema before promoting the first DC of a new OS version.

@DecryptedTech @CptSC @IAMERICAbooted I'm embarrassed I don't know this. Would you still require, at least, all 2019 DCs and then run a command to upgrade?

If the Active Directory Schema version is 2019, is it still possible to be vulnerable to badsuccessor post-patch attack flows?

@acjuelich @DecryptedTech @IAMERICAbooted DFL/FFL are separate things. The schema is update during the adprep

@DecryptedTech @CptSC @IAMERICAbooted So how do you update to the 2019 schema if there is no functional level upgrade which aligns with it?

@IAMERICAbooted @acjuelich 90 I think. But please double check me on this

@CptSC @acjuelich What is 2025? 88 or 89?

@IAMERICAbooted Get-ADObject (Get-ADRootDSE).schemaNamingContext -Property objectVersion | Select-Object -ExpandProperty objectVersion 88 and below should mean that badsuccesor is no issue. Permissions over msDS-KeyCredentialLink would still be problematic. SpecterOps has a write up I think

So, to catch you up in case you missed the akamai post, it's still exploitable after the patch, especially if you control an OU object with write permissions. But ky understanding is it needs the correct schema version to exploit it. I have patch to OU control from low privilege so I want to be sure.

@IAMERICAbooted @acjuelich Quite certain that 2019 and 2022 are schema version 88 and 2016 is version 87. Might miss remember however

@acjuelich Hmm, the browser gpt is saying there is a 2019 schema version. Guess I will login to the DC and check.

@IAMERICAbooted "Layer 8 Remediation" is also up for grabs

@CptSC Oh, the answer it always is, right? Theres nothing more honest than that name! 😆

Since I dont think "UnfuckYourShIT'" is an appropriate business name, anyone have some better ideas?

@therese_nyren Ajdå, nån som förväxlade X med LinkedIn