Kamiloxf Security Config 2023
- Thread starter kamiloxf
- Start date
- Last updated
- May 15, 2023
- How it's used?
- For home and private use
- OS (desktop)
- Windows 11
- On-device encryption
- None
- Log-in security
-
- Physical security key
- Typing in password or passcode
- Security updates
- Manual - check for updates
- Windows UAC
- Notify me only when programs try to make changes to my computer
- Windows 11 SAC
- In Evaluation mode
- WiFi network firewall
- Router firewall is On
- About WiFi router
-
MIKROTIK CHATEAU LTE18 AX + Sophos XG Firewall Home Editon with SSL Inspection
- Real-time security
-
- Firewall security
- Microsoft Defender Firewall (Windows)
- About custom security
-
- Firewall Hardening (Blocking outbound connections of LOLBins and Geo IP blocking Russian Federation, China, NorthKorea)
- O&O ShutUp++ (recomended settings)
- Core Isolation only enabled Microsoft Vulnerable Driver Blocklist
- Sandboxie Plus
- Vulnerability scanner: Nessus Essentials
- OSSEC+
System Settings:
- Autoplay disabled
- Hide extensions for know file type - disabled
- Show hidden files - enabled
- Virtualization enabled
- Windows Update Delivery Optimization disabled
- Periodic malware scanners
-
Norton PowerEraser
Sophos Scan&Clean
Malwarebytes Free
Eset Online Scanner
Emsisoft Emergancy Kit
- Malware sample testing
- I do participate in malware testing. See details about my testing environment below.
- Environment for malware testing
-
VMWare Workstation Player
Windows 11 Enterprise
Configuration
- Defender disabled with: Defender Remover
- Admin Privileges
Install Software
- Notepad++
- Java
- Firefox
- MS Office 2010 H&S
- eMClient
- Random file on desktop
- Adobe Reader
- SysInternalsSuite
- LibreOffice 6.0
- Python environment
Sanboxie Plus (Main OS)
VM on Nas Windows 7 Enterprise
- Browser(s) and extensions
-
Chromium (dev channel)
Extensions:
- Ublock Origin
- 1Password
- Netcraft Extanded Phishing Protection
- Malwarebytes Browser Guard
- Secure DNS
-
Adgurad Home (Cloudflare DoH)
- Desktop VPN
-
None
- Password manager
-
1Password with Yubikey Yubico
- Maintenance tools
-
DesktopCentral Cloud (Patch Managment)
Revo Unsinstaller portable
Own cleaning script
- File and Photo backup
-
Synology DS420+
- System recovery
-
Synology Active Backup for Business
- Risk factors
-
- Browsing to popular websites
- Browsing to unknown / untrusted / shady sites
- Working from home
- Making audio/video calls
- Opening email attachments
- Buying from online stores, entering banks card details
- Logging into my bank account
- Downloading software and files from reputable sites
- Downloading software and files from unknown / untrusted / shady sites
- Requesting and accepting remote access
- Gaming
- Streaming audio/video content from trusted sites or paid subscriptions
- Downloading malware samples
- Computer specs
-
None
- Notable changes
-
Update 06/14/2023
- What I'm looking for?
-
Looking for medium feedback.
- Apr 28, 2015
- 8,448
Malware samples: I do participate and I am aware of the risks -> are you using some kind of virtualization application/system? VMWare, VirtualBox,...
Yes, of course, most often it is VMWare Workstation player but sometimes I fire up a VM on the NAS server, or I also run some potentially harmful files in Sandboxie Plus
Last edited:
- Feb 25, 2017
- 2,375
I once tried, but it was a bit annoying, so I went back to the Default optionFor a moment I thought that was my config.
Consider setting UAC to max.
- Apr 28, 2015
- 8,448
There is now a new filed where users may add/explain their environment malware testing:
Please feel free to update Your config, thanks
Please feel free to update Your config, thanks
Changes:
- Bitwarden has been replaced with 1Password
- Microsoft Edge browser changed to Chromium (uses github script for installation) GitHub - mkorthof/chrupd: Simple Chromium Updater
- Bitwarden has been replaced with 1Password
- Microsoft Edge browser changed to Chromium (uses github script for installation) GitHub - mkorthof/chrupd: Simple Chromium Updater
Similar threads
