Danger Nagisa Security Config 2021

Last updated
May 11, 2021
How it's used?
For sharing
Operating system
Windows 10
On-device encryption
Log-in security
Security updates
Allow security updates and latest features
User Access Control
Always notify
Smart App Control
Network firewall
N/A
Real-time security
None
Firewall security
Microsoft Defender Firewall
About custom security
Inbound connections set to be denied
Unnecessary services disabled

from H_C:
- Block LOLBins
- Block mshta.exe
- SRP is set to disallow except ((protect shortcuts)) and a few directories I chose.
- Block PowerShell scripts
- Block remote access
- Disable SMB 1,2 and 3
Periodic malware scanners
EEK
HitmanPro
Malware sample testing
I do not participate in malware testing
Browser(s) and extensions
Firefox with custom user.js
Qutebrowser
Pale Moon
Vivaldi
-
uBlock Origin
NoScript
Treestyle tabs
Secure DNS
NextDNS
Desktop VPN
None
Password manager
KeePassXC
Maintenance tools
Windows built-in tools
File and Photo backup
None
System recovery
None
Risk factors
    • Browsing to popular websites
    • Browsing to unknown / untrusted / shady sites
    • Opening email attachments
    • Buying from online stores, entering banks card details
    • Downloading software and files from reputable sites
    • Gaming
    • Streaming audio/video content from trusted sites or paid subscriptions
Computer specs
R5 1600
GTX 1060@6
8 GB DDR4 2666 MHz
1 TB HDD
What I'm looking for?

Looking for medium feedback.

Notes by Staff Team
  1. This setup configuration does not have a backup plan. We strongly recommend to add a backup solution for your data so that you can restore it in the case of an emergency.
    Backing up allows the recovery of data that has been lost due of a malware attack (eg. ransomware) or a hard disk crash. In such events you might lose family photos, your music collection, documents, or financial data. Backups are fast and simple to perform so it should be done on a regular basis.

Ink

Administrator
Verified
Jan 8, 2011
22,490
Disable 16-bit.
This setting is redundant.

Windows 10 x64 doesn't support 16-bit programs. Windows 10 x86 has it disabled by default.

You may want to consider back up options for others users of the shared device.

You may want to allow Microsoft Accounts for other users of the shared device. OneDrive can be used to keep other users files' safe and secure.
 

Andy Ful

From Hard_Configurator Tools
Verified
Honorary Member
Top Poster
Developer
Well-known
Dec 23, 2014
8,458
Windows 64-bit has not got the native NTVDM subsystem, so 16-bit applications cannot run. Yet, there are 64-bit NTVDM alternatives available on GitHub, so it is possible to run 16-bit applications even on Windows 64-bit.
Anyway, I doubt if this could be used in the attacks against the home users.
 

Kongo

Level 36
Verified
Top Poster
Well-known
Feb 25, 2017
2,584

Nagisa

Level 7
Thread author
Verified
Jul 19, 2018
342
What do you mean? You need to enable Virtualization in order to even use VirtualBox or am I wrong? :unsure:

Also: About protection through hardware virtualization in Kaspersky applications
You are right. I was meaning Hypervisor enforced code integrity, part of the VBS.

1610715539695.png


1610715567616.png
 
F

ForgottenSeer 85179

What's the point of using 2 concurrent DNS resolvers?

View attachment 252973
Regulation.
In his setup he use non filtering Cloudflare so system doesn't break.
Using a filtering one for browser make sense as this eliminate extensions.

I use the same way but with only NextDNS. Default NextDNS setup, configured on Router and more strict NextDNS profile for Edge, Thunderbird, Android, Browser on Android
 
F

ForgottenSeer 89360

Well, two solutions exist:
- allowing/ waiting few seconds until ads is gone
- avoid Youtube

On e.g. Xbox you can't block Youtube ads with network filtering so i get these ads there but it's *okay*
None of these 2 solutions are necessary, when there is a third one, to install uBlock Origin and use YT without waiting on pesky, repetitive ads about detergents and audio-book apps. 😀
 

Kongo

Level 36
Verified
Top Poster
Well-known
Feb 25, 2017
2,584
I was unable to eliminate extensions, as for example YouTube ads and some others can't be filtered. They come from the same URL the video flow comes.
Using Adguard Windows doesn't require an extension and it's blocking Youtube ads. If you want and extension to configure Adguard in your browser you can always enable Adguard Browser-Assistant.
 
F

ForgottenSeer 89360

Using Adguard Windows doesn't require an extension and it's blocking Youtube ads. If you want and extension to configure Adguard in your browser you can always enable Adguard Browser-Assistant.
I like the combination of NextDNS + uBlock origin (where it can be deployed). One reduces the traffic, blocks newly-registered domains and greatly limits malware abilities to call home, and the other one is lightweight, it starts working where NextDNS stops.
 

Kongo

Level 36
Verified
Top Poster
Well-known
Feb 25, 2017
2,584
and the other one is lightweight
Not using an extension at all is even lighter and gives you even more possibilities to increase privacy with Stealth-mode without making your fingerprint more unique.

Unbenannt.PNG

In the end it's up to you and I'm sure Ublock Origin isn't a bad solution either.
 
Last edited by a moderator:

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

User Menu

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top