- Oct 3, 2022
- 645
Hi @Andy Ful ,
I asked my red team ( aka hacker acquaintances ) to test the effects of your new tool on my freshly installed Windows 11 Home laptop.
In addition to your tool, I also have Kaspersky Premium installed in default configuration.
There is a known problem with this laptop - WiFi cannot be disabled thru BIOS, and I am WiFi connected this time.
The only thing I changed to your tool is WDAC - removing 2 Appdata folders from the WDAC whitelist.
Result was that machine is pwned. MS Edge is not able to load the default Bing page. And typing in google.com into the address bar resulted in a "Not Secure" google.com address with a page that says "Not Found".
I then tried opening a Terminal window and doing a "ping google.com", and it was successful.
Then II did a Network Reset, but to no effect. Also Google Home is still functioning.
I am reasonably sure, that the attack was thru WiFi, maybe thru Peer to Peer mode.
Then I disabled WiFi and switched to Ethernet, connected to a different router, And MS Edge is now able to connect.
Maybe this isn't a fair test , you let me know.
If you think I should ask my red team to re-test, show me the steps to configure your Tool to the most secure settings.
My red team are only acquaintances, not friends. And they do not divulge their TTP to me.
I asked my red team ( aka hacker acquaintances ) to test the effects of your new tool on my freshly installed Windows 11 Home laptop.
In addition to your tool, I also have Kaspersky Premium installed in default configuration.
There is a known problem with this laptop - WiFi cannot be disabled thru BIOS, and I am WiFi connected this time.
The only thing I changed to your tool is WDAC - removing 2 Appdata folders from the WDAC whitelist.
Result was that machine is pwned. MS Edge is not able to load the default Bing page. And typing in google.com into the address bar resulted in a "Not Secure" google.com address with a page that says "Not Found".
I then tried opening a Terminal window and doing a "ping google.com", and it was successful.
Then II did a Network Reset, but to no effect. Also Google Home is still functioning.
I am reasonably sure, that the attack was thru WiFi, maybe thru Peer to Peer mode.
Then I disabled WiFi and switched to Ethernet, connected to a different router, And MS Edge is now able to connect.
Maybe this isn't a fair test , you let me know.
If you think I should ask my red team to re-test, show me the steps to configure your Tool to the most secure settings.
My red team are only acquaintances, not friends. And they do not divulge their TTP to me.
Last edited: