Advanced Plus Security Vasudev Security Config 2021

Last updated
Oct 4, 2021
How it's used?
For home and private use
Operating system
Windows 10
Other operating system
Xubuntu 20.04.2 on G500
On-device encryption
Log-in security
Security updates
Check for updates and Notify
User Access Control
Notify me only when programs try to make changes to my computer
Smart App Control
Network firewall
N/A
Real-time security
Windows Defender, BD Traffic Light and Configure Defender
Firewall security
Microsoft Defender Firewall
About custom security
Whitelisted Virtualbox file folder.
Block at first sight and couple of others using Configure defender.
Periodic malware scanners
KRD, Dr.web livecd, ESET Sysrescue
Malware sample testing
I do not participate in malware testing
Browser(s) and extensions
Firefox

uBO, Cookie Autodelete,BD Traffic Light, SC Currency converter, Google translate for FF,,HTTPS everywhere,Uget, User agent switcher & Bitwarden
Edge Chromium:
uBO, BD Traffic Light
Secure DNS
None
Desktop VPN
None
Password manager
Bitwarden
Maintenance tools
Bleachbit, Wise Ultilities(Disk, Reg and Program uninstaller), Hibit uninstaller
File and Photo backup
Macrium Reflect and On-Site backup to HDD.
System recovery
Macrium Reflect
Risk factors
    • Working from home
    • Browsing to popular websites
    • Browsing to unknown / untrusted / shady sites
    • Opening email attachments
    • Buying from online stores, entering banks card details
    • Logging into my bank account
    • Downloading software and files from reputable sites
    • Sharing and receiving files and torrents
    • Requesting and accepting remote access
    • Gaming
    • Streaming audio/video content from trusted sites or paid subscriptions
    • Streaming audio/video content from shady sites
    • Coding and development
Computer specs
Alienware 15 R2 w/ 6700HQ,980M 8GB GDDR5,16GB DDR4 RAM, 1xNVMe SSD,1xSATA SSD,Logitech g304/5 Mouse,AW AGA,X Stand, Amazonbasic stand and 1TB HGST HDD 7.2k rpm.
Lenovo G500 with Pentium 2020M PCLGA w/ 8GB RAM,250GB BX500 SSD and intel hd 2500 graphics.
Notable changes
Sept Preview patches.
What I'm looking for?

Looking for medium feedback.

Kongo

Kongo

Level 35
Verified
Top Poster
Well-known
Feb 25, 2017
2,492
Kinda late to the party but as @harlan4096 already said you should consider setting UAC to always notify.
Reason: Bypassing Windows 10 UAC with mock folders and DLL hijacking

Also way too many extensions.
1. Remove HTTPS Everywhere and enable HTTPS-Only-Mode in Firefox. It does the same as the extension.
2. Remove User-Agent-Switcher, cause it just makes you more identifiable. Simply use privacy.resistFingerprinting in the about:config settings which doesn't require an extension that makes your fingerprint more unique.
 
  • Like
  • +Reputation
  • Applause
Reactions: Nevi, Cortex, Vasudev and 4 others
V

Vasudev

Level 33
Thread author
Verified
Nov 8, 2014
2,228
SecureKongo said:
Kinda late to the party but as @harlan4096 already said you should consider setting UAC to always notify.
Reason: Bypassing Windows 10 UAC with mock folders and DLL hijacking

Also way too many extensions.
1. Remove HTTPS Everywhere and enable HTTPS-Only-Mode in Firefox. It does the same as the extension.
2. Remove User-Agent-Switcher, cause it just makes you more identifiable. Simply use privacy.resistFingerprinting in the about:config settings which doesn't require an extension that makes your fingerprint more unique.
Click to expand...
UAC was kept at default level. I don't want Vista like UAC experience. I change Windows settings too frequently.

HTTPS everywhere allows localhost to use http versus https-only mode in firefox when developing web apps/APIs. That's the reason I use User agent switcher to check if how different browser identify themselves which helps in testing.
 
  • Like
  • Wow
Reactions: Nevi, Cortex, ForgottenSeer 85179 and 2 others
V

Vasudev

Level 33
Thread author
Verified
Nov 8, 2014
2,228
SecureKongo said:
Can you explain further? I think I didn't quite get that.
Click to expand...
You can identify user's browser whether its on PC/Tablet/Mobile etc... and exact browser version if someone notices crash on specific chrome/safari version which maybe missed since we might test it against higher version or sometimes lower version at the time of testing.
 
  • Like
Reactions: Nevi and Cortex
Kongo

Kongo

Level 35
Verified
Top Poster
Well-known
Feb 25, 2017
2,492
Vasudev said:
You can identify user's browser whether its on PC/Tablet/Mobile etc... and exact browser version if someone notices crash on specific chrome/safari version which maybe missed since we might test it against higher version or sometimes lower version at the time of testing.
Click to expand...
Wouldn't it be a better approach to set another user agent in about:config whenever you need it? At least that doesn't require an extension and lets you choose which user agent you want compared to an extension with a limited list of user agents.

Source: How to change your user agent for Firefox
 
  • Like
Reactions: Nevi, Cortex, harlan4096 and 1 other person
V

Vasudev

Level 33
Thread author
Verified
Nov 8, 2014
2,228
SecureKongo said:
Wouldn't it be a better approach to set another user agent in about:config whenever you need it? At least that doesn't require an extension and lets you choose which user agent you want compared to an extension with a limited list of user agents.

Source: How to change your user agent for Firefox
Click to expand...
I've been using the extension for a long time and didn't seek an alternative. Anyway, User agent switcher simplifies the user agent setting instead of going and adding custom user agent strings.
 
  • Like
Reactions: Nevi, Cortex and Kongo
Kongo

Kongo

Level 35
Verified
Top Poster
Well-known
Feb 25, 2017
2,492
SecurityNightmares said:
You can't block all browser API; else no website would work. This also cripple down your browsing behaviour for non-improvement and even makes you easier trackable
Click to expand...
True, but actually it wasn't my intention to give him tips to be less identifiable as he obviously needs a user agent switcher. I just thought it would be a more secure alternative to use built in browser functions instead of adding an extension. :)
 
  • Like
  • Applause
Reactions: Nevi, Cortex, Vasudev and 1 other person
You must log in or register to reply here.

Similar threads

Kongo
    • Like
    • Applause
Advanced Security Kongo's Mobile Security Config 2024
Replies
9
Views
566
Mobile Setup Configuration Help & Showcase
Kongo
Kongo
Moonhorse
    • Like
Advanced Plus Security Moonhorse 2024 windows config
Replies
2
Views
440
PC Setup Configuration Help & Showcase
Moonhorse
Moonhorse
Mycenius
    • Like
Advanced Security Mycenius Mobile Security 2024
Replies
16
Views
768
Mobile Setup Configuration Help & Showcase
Mycenius
Mycenius

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top