!windows_security@infosec.pub
Expert-level Windows security discussions for security professionals: hardening, security updates, policies, standards, privacy, tips, tools, red team, blue team, and other related topics.
NO TECH SUPPORT QUESTIONS
!windows_security
@infosec.pubI’ve looked this up a lot, and I keep getting completely different results in each page I clicked.
I want to know what is the best, most secure antivirus, that’s universal (Supports Windows, MacOS, Linux, Android), that detects 100% of malware.
It doesn't need to support Linux, but I thought it would be nice.
If you think "antivirus that detects 100% of malware" doesn't exist, then the one that finds the most malware the fastest
Yes, it can be anti-malware too, but it should fit the conditions above as well.
(Disclaimer: This question and similar questions were Googled before asking here, and I did not find the answers I was looking for.)
Ok, so I'm wondering... what is the best way to encrypt a partition?
I know that Bitlocker exists, but I am unsure if that is the most secure encryption method for a partition. I want the one that is the most secure.
The method should work with [Windows, Linux], this way I can view the backups on any computer I'm using.
I'm wondering in terms of most secure encryption for a drive partition.
Are encrypted drives on Linux more secure than encrypted drives on Windows (in the sense of getting inside)?
I've just been wondering this for some time.
Hello all, I am wondering, what is the most secure method of encrypting partitions on Windows?
I know about Bitlocker, but I am wondering if there are more secure encryption methods on Windows. That is all.
It's not that specific either, so... as long as your answer fits the question, it's good.
https://support.microsoft.com/en-us/topic/kb5021131-how-to-manage-the-kerberos-protocol-changes-related-to-cve-2022-37966-fd837ac3-cdec-4e76-a6ec-86e67501407d
https://techcommunity.microsoft.com/t5/sysinternals-blog/sysmon-v15-0-autoruns-v14-1-and-process-monitor-v3-95/ba-p/3857916
Sysmon v15.0 This update to Sysmon, an advanced host security monitoring tool, sets the service to run as a protected process, hardening it against tampering, adds a new event, FileExecutableDetected, for when new executable images are saved to files, and fixes a system hang occurring in certain sit...
https://github.com/CMEPW/BypassAV
This map lists the essential techniques to bypass anti-virus and EDR - GitHub - CMEPW/BypassAV: This map lists the essential techniques to bypass anti-virus and EDR
https://github.com/LaresLLC/SysmonConfigPusher
Pushes Sysmon Configs. Contribute to LaresLLC/SysmonConfigPusher development by creating an account on GitHub.
https://techcommunity.microsoft.com/t5/windows-it-pro-blog/latest-windows-hardening-guidance-and-key-dates/ba-p/3807832
Hardening is a key element of our ongoing security strategy to help keep your estate protected while you focus on your job. Increasingly creative cyberthreats target weaknesses anywhere possible, from the chip to the cloud. Have you seen our publications on hardening on the Windows message center? S...
https://www.youtube.com/watch?v=xvth9Zb1_ug
Mimikatz is a widely known and used tool in the offensive security scene, and also a nightmare for people in defensive security. Malware and ransomware devel...