Sebocat
@sebocat.bsky.social
#InfoSec #Bluehat #SystemEngineer 💻 | loves #Deep #Tech #House #Techno
Mastodon: https://infosec.exchange/@Sebocat
Soundcloud: https://soundcloud.com/sebocat
Mastodon: https://infosec.exchange/@Sebocat
Soundcloud: https://soundcloud.com/sebocat
Reposted by Sebocat
I don't know who needs to hear this, but there is no such thing as securing BYOD, especially non-mobile OSs
You may limit damage your regular users can cause, but you are not keeping out an attacker when you accept a model that allows access from unknown, unmanaged devices
You may limit damage your regular users can cause, but you are not keeping out an attacker when you accept a model that allows access from unknown, unmanaged devices
February 12, 2025 at 4:18 AM
I don't know who needs to hear this, but there is no such thing as securing BYOD, especially non-mobile OSs
You may limit damage your regular users can cause, but you are not keeping out an attacker when you accept a model that allows access from unknown, unmanaged devices
You may limit damage your regular users can cause, but you are not keeping out an attacker when you accept a model that allows access from unknown, unmanaged devices
You should also read this great article by @ajf8729.com for Windows Firewall, too - needed it in the past for EntraID joined devices with certificate auth, highly recommended!
This article is a great deep dive by @cryps1s
I am also a huge fan of this Firewall series by Anthony Fontanez (used to be @ajf8729)
anthonyfontanez.com/index.php/20...
He covers how to handle certificate auth in the firewall and use with Entra joined devices, explains hard stuff well :)
I am also a huge fan of this Firewall series by Anthony Fontanez (used to be @ajf8729)
anthonyfontanez.com/index.php/20...
He covers how to handle certificate auth in the firewall and use with Entra joined devices, explains hard stuff well :)
February 7, 2025 at 3:32 PM
You should also read this great article by @ajf8729.com for Windows Firewall, too - needed it in the past for EntraID joined devices with certificate auth, highly recommended!
You should watch Jessica Paynes amazing Windows Firewall presentation - and then read this excellent blog about endpoint isolation medium.com/@cryps1s/end...
February 6, 2025 at 9:49 PM
You should watch Jessica Paynes amazing Windows Firewall presentation - and then read this excellent blog about endpoint isolation medium.com/@cryps1s/end...
If you have to do with EntraID you must read and understand this amazing thread - and also follow @nathanmcnulty.com 😊
This provides important insights 💡
CA policies cannot block anything until AFTER authentication occurs
This means CA cannot help with password spray/credential stuffing. This is why we have Password Protection and Smart Lockout.
learn.microsoft.com/...
learn.microsoft.com/...
CA policies cannot block anything until AFTER authentication occurs
This means CA cannot help with password spray/credential stuffing. This is why we have Password Protection and Smart Lockout.
learn.microsoft.com/...
learn.microsoft.com/...
Password protection in Microsoft Entra ID - Microsoft Entra ID
Learn how to dynamically ban weak passwords from your environment with Microsoft Entra Password Protection
learn.microsoft.com
January 25, 2025 at 6:53 PM
If you have to do with EntraID you must read and understand this amazing thread - and also follow @nathanmcnulty.com 😊
Reposted by Sebocat
Reposted by Sebocat
Windows has issue:
Person: fuck this I'm going to Linux
Narrator: and they quickly learned to hate two operating systems.
Person: fuck this I'm going to Linux
Narrator: and they quickly learned to hate two operating systems.
November 26, 2024 at 4:48 PM
Windows has issue:
Person: fuck this I'm going to Linux
Narrator: and they quickly learned to hate two operating systems.
Person: fuck this I'm going to Linux
Narrator: and they quickly learned to hate two operating systems.
Reposted by Sebocat
In this blog post i breaks down how attackers can exploit and abuse service principals and what you can do to defend against it.
Check it out here:
laythchebbi.com/index.php/20...
#AzureSecurity #PrivilegeEscalation #OffensiveSecurity #CloudSecurity #Cybersecurity
Check it out here:
laythchebbi.com/index.php/20...
#AzureSecurity #PrivilegeEscalation #OffensiveSecurity #CloudSecurity #Cybersecurity
Privilege escalation using Azure Service principal
Introduction In Microsoft Azure, the management of access and permissions is critical for maintaining a secure environment. Azure Service Principals serve as non-human identities that allow applicatio...
shorturl.at
November 21, 2024 at 10:35 AM
In this blog post i breaks down how attackers can exploit and abuse service principals and what you can do to defend against it.
Check it out here:
laythchebbi.com/index.php/20...
#AzureSecurity #PrivilegeEscalation #OffensiveSecurity #CloudSecurity #Cybersecurity
Check it out here:
laythchebbi.com/index.php/20...
#AzureSecurity #PrivilegeEscalation #OffensiveSecurity #CloudSecurity #Cybersecurity
Reposted by Sebocat
Microsoft CEO Satya Nadella on stage at Ignite announcing the company’s new Windows 365 Link mini cloud PC www.theverge.com/2024/11/19/2...
November 19, 2024 at 2:41 PM
Microsoft CEO Satya Nadella on stage at Ignite announcing the company’s new Windows 365 Link mini cloud PC www.theverge.com/2024/11/19/2...
Reposted by Sebocat
Quick reminder to check out the #Microsoft community starter packs.
We have new starter packs + starter packs updated with new folks.
So hit up the page and update your follows so you can connect with more folks.
Please add if I've missed any.
bluesky.ms/starterpacks/
We have new starter packs + starter packs updated with new folks.
So hit up the page and update your follows so you can connect with more folks.
Please add if I've missed any.
bluesky.ms/starterpacks/
🚀 Starter packs | Bluesky.ms
Starter packs in Bluesky are curated collections of folks to follow. These packs are created by the community and are a great way to get started with Bluesky. You can bulk follow the folks in the pack...
bluesky.ms
November 18, 2024 at 9:52 AM
Quick reminder to check out the #Microsoft community starter packs.
We have new starter packs + starter packs updated with new folks.
So hit up the page and update your follows so you can connect with more folks.
Please add if I've missed any.
bluesky.ms/starterpacks/
We have new starter packs + starter packs updated with new folks.
So hit up the page and update your follows so you can connect with more folks.
Please add if I've missed any.
bluesky.ms/starterpacks/
Reposted by Sebocat
I am going at Microsoft Ignite talking about how Windows is changing post the CrowdStrike incident. See you there!!
ignite.microsoft.com/en-US/sessio...
ignite.microsoft.com/en-US/sessio...
What's New in Windows Security, Productivity and Cloud
Do your best work on Windows. Join Pavan Davuluri, Navjot Virk, Aidan Marcuss, and David Weston to learn how Windows is transforming end user computing for all with the power of AI and the Microsoft c...
ignite.microsoft.com
November 17, 2024 at 2:10 AM
I am going at Microsoft Ignite talking about how Windows is changing post the CrowdStrike incident. See you there!!
ignite.microsoft.com/en-US/sessio...
ignite.microsoft.com/en-US/sessio...
Reposted by Sebocat
Almost embarrassed to post this, but I've always used Fiddler or Burp for capturing things like this...
I didn't have admin rights and was trying to capture network traffic from a pop-up, so Dev Tools wasn't working
Apparently this is built into Chrome/Edge! So cool :)
edge://net-export/
I didn't have admin rights and was trying to capture network traffic from a pop-up, so Dev Tools wasn't working
Apparently this is built into Chrome/Edge! So cool :)
edge://net-export/
November 17, 2024 at 6:49 AM
Almost embarrassed to post this, but I've always used Fiddler or Burp for capturing things like this...
I didn't have admin rights and was trying to capture network traffic from a pop-up, so Dev Tools wasn't working
Apparently this is built into Chrome/Edge! So cool :)
edge://net-export/
I didn't have admin rights and was trying to capture network traffic from a pop-up, so Dev Tools wasn't working
Apparently this is built into Chrome/Edge! So cool :)
edge://net-export/
Reposted by Sebocat
How are you protecting your M365/Azure environment from on-premises attack vectors for compromise?
I always recommend reviewing this guide here as a checklist of actions you should be taking and implement them: aka.ms/protectm365 #entra #security #m365 #o365 #identity #azure #microsoft
I always recommend reviewing this guide here as a checklist of actions you should be taking and implement them: aka.ms/protectm365 #entra #security #m365 #o365 #identity #azure #microsoft
November 15, 2024 at 6:38 PM
How are you protecting your M365/Azure environment from on-premises attack vectors for compromise?
I always recommend reviewing this guide here as a checklist of actions you should be taking and implement them: aka.ms/protectm365 #entra #security #m365 #o365 #identity #azure #microsoft
I always recommend reviewing this guide here as a checklist of actions you should be taking and implement them: aka.ms/protectm365 #entra #security #m365 #o365 #identity #azure #microsoft
Reposted by Sebocat
This was Austrian Airlines' final post over on the Twitter.
November 13, 2024 at 6:08 PM
This was Austrian Airlines' final post over on the Twitter.
Reposted by Sebocat
Bluesky explained in 60 seconds!
November 13, 2024 at 4:15 AM
Bluesky explained in 60 seconds!
Reposted by Sebocat
🦋 Introducing bluesky.ms 👏 = A crowdsourced database of anyone and everyone in the Microsoft community on Bluesky.
👉 Add yourself and anyone you know today 👈
🫂 All are welcome.
This is my v1, I'll add options to directly follow from the site itself but first 👇
LET'S FILL IT UP! 🙏
👉 Add yourself and anyone you know today 👈
🫂 All are welcome.
This is my v1, I'll add options to directly follow from the site itself but first 👇
LET'S FILL IT UP! 🙏
Search bluesky.ms
Use this page to search for the Microsoft community on bluesky.ms.
bluesky.ms
November 8, 2024 at 3:51 PM
🦋 Introducing bluesky.ms 👏 = A crowdsourced database of anyone and everyone in the Microsoft community on Bluesky.
👉 Add yourself and anyone you know today 👈
🫂 All are welcome.
This is my v1, I'll add options to directly follow from the site itself but first 👇
LET'S FILL IT UP! 🙏
👉 Add yourself and anyone you know today 👈
🫂 All are welcome.
This is my v1, I'll add options to directly follow from the site itself but first 👇
LET'S FILL IT UP! 🙏