Look at this fantastic piece of advice from Microsoft!
-
@kr3st3n@infosec.exchange @theodric@social.linux.pizza @phloggen@expressional.social this is an actual technique that works against many commercial AV and EDR solutions
@kr3st3n@infosec.exchange @theodric@social.linux.pizza @phloggen@expressional.social a related one is to generate a bunch of very large benign archives to flood the scan queue before it picks up your payload, giving it time to execute before the system flags it.
-
Look at this fantastic piece of advice from Microsoft! https://learn.microsoft.com/en-au/answers/questions/2007466/are-costs-incurred-when-attempting-to-scan-passwor
-
@theodric
Does it suggest "password" or "ABC123"? -
Look at this fantastic piece of advice from Microsoft! https://learn.microsoft.com/en-au/answers/questions/2007466/are-costs-incurred-when-attempting-to-scan-passwor
@theodric what the..what??
-
@theodric what the..what??
-
Look at this fantastic piece of advice from Microsoft! https://learn.microsoft.com/en-au/answers/questions/2007466/are-costs-incurred-when-attempting-to-scan-passwor
@theodric In an unrelated statement, a Microsoft employee also recommended the use of generic locks that are easy to pick, lest you’ll never be locked out of your house again.
-
Look at this fantastic piece of advice from Microsoft! https://learn.microsoft.com/en-au/answers/questions/2007466/are-costs-incurred-when-attempting-to-scan-passwor
Classic Microslop
-
Look at this fantastic piece of advice from Microsoft! https://learn.microsoft.com/en-au/answers/questions/2007466/are-costs-incurred-when-attempting-to-scan-passwor
@theodric I am concerned that Defender is trying to decrypt files at all...
-
Look at this fantastic piece of advice from Microsoft! https://learn.microsoft.com/en-au/answers/questions/2007466/are-costs-incurred-when-attempting-to-scan-passwor
@theodric relatedly, if everybody uses the same password the odds of someone guessing a password goes way down, right? Like, if there are 50 people in an organization and they each have their own password, an attacker is 50 times more likely to guess a password. That's just basic math.
-
Look at this fantastic piece of advice from Microsoft! https://learn.microsoft.com/en-au/answers/questions/2007466/are-costs-incurred-when-attempting-to-scan-passwor
@theodric ah, passwords as social convention
-
@theodric relatedly, if everybody uses the same password the odds of someone guessing a password goes way down, right? Like, if there are 50 people in an organization and they each have their own password, an attacker is 50 times more likely to guess a password. That's just basic math.
@swelljoe your logic is impeccable.
-
Look at this fantastic piece of advice from Microsoft! https://learn.microsoft.com/en-au/answers/questions/2007466/are-costs-incurred-when-attempting-to-scan-passwor
@theodric@social.linux.pizza google is evil but they're good at what they do. Microsoft is just evil
-
Look at this fantastic piece of advice from Microsoft! https://learn.microsoft.com/en-au/answers/questions/2007466/are-costs-incurred-when-attempting-to-scan-passwor
@theodric I’m sure this response was perfectly appropriate…
-
Look at this fantastic piece of advice from Microsoft! https://learn.microsoft.com/en-au/answers/questions/2007466/are-costs-incurred-when-attempting-to-scan-passwor
@theodric you made me open up a Microsoft website 🤯
-
R relay@relay.mycrowd.ca shared this topic
