Reviewing the CIS recommended hardening config for Windows Server. Just realized that you shouldn’t just look at the failed controls but the ones that passed too. One control when enabled actually passes command line entries into the audit log in plain text, so that includes passwords.

My research grant was funded. Now the hard part- executing with the goal of getting year 2 funding.

Also going crazy because everyone wants their risk reports before the holiday. As if they’ll even get read before vacations start.

Trying to get started with reverse engineering and binary exploitation by following this guy. My brain hurts, but in a good way!

Well just got done with fixing a few annoyances in some of my github utils and added a few things. Overall been pretty busy… I think.

Trying to find a suitable WAF for AWS EKS. Any suggestions?

One of the teams has a cluster built with the nginx ingress which uses classic load balancers. Shifting them to the AWS ingress (which uses ALBs enabling our AWS WAF to apply) looks like it’ll be massively expensive due to the blow out in load balancer costs - but it gets us a WAF we already use across everything else. Other option is to find a WAF specifically for EKS and shift all clusters to that.