viernes, 15 de diciembre de 2023

DNS. Cloudflare. Secure DNS

Purpose


Update your TCP configuration to put new DNS servers with extendent security features.

Some important DNS to consider.

DNS 1.1.1.1 (Cloudflare)

Antimalware and adult content. Safeguard user privacy and optimize efficiency, it is designed for direct, not for blocking or filtering content . Warp performance and security technology. Support DNS over HTTPS

DNS direcciones de Cloudflare support DNS over HTTPS

DNS 1.1.1.2  - 1.0.0.2 (Cloudflare)

 Protection malware

DNS 1.1.1.3 -  1.0.0.3  (Cloudflare)

 Anti-malware (malware and adult content) 

DNS 9.9.9.9 (IBM)

 Fast, safe and private browsing


There are a new European (France) DNS Service, Free and Secure, it is DNS0.

dns0 offers a "child-friendly" Internet free of ads, pornography, dating, piracy and adult YouTube videos.


Normal (Malware)

IPv4: 193.110.81.0 / 185.253.5.0
IPv6: 2a0f:fc80:: / 2a0f:fc81::
DOH: https://dns0.eu
DOQ: dns0.eu
DOT: dns0.eu


 Zero (Malware reforzado)

IPv4: 193.110.81.9 / 185.253.5.9
IPv6: 2a0f:fc80::9 / 2a0f:fc81::9
DOH: https://zero.dns0.eu
DOQ: zero.dns0.eu
DOT: zero.dns0.eu
Kids (parental filtering)

IPv4: 193.110.81.1 / 185.253.5.1
IPv6: 2a0f:fc80::1 / 2a0f:fc81::1
DOH: https://kids.dns0.eu
DOQ: kids.dns0.eu
DOT: kids.dns0.eu		 Resolution without filtering

IPv4: 193.110.81.254 / 185.253.5.254
IPv6: 2a0f:fc80::ffff / 2a0f:fc81::ffff
DOH: https://open.dns0.eu
DOQ: open.dns0.eu
DOT: open.dns0.eu		 


by GoN | Published: May 7, 2020 | Last Updated: Dec 15, 2023

Publicado por en No hay comentarios:
Etiquetas: ,

martes, 5 de septiembre de 2023

Security. Tools. Check URLs search.censys.io

Purpose

It is powefull tool to extract information from a link or IP very fast.

To know what you have exposed to the internet


Steps

Free version without register.



The query es very fast. There are a lot of important information.

For example






If you push to "VIEW ALL DATA"



It depends on Host, the information is more extensive or not.


To consider








by GoN | Published: Sept 5, 2023 | Last Updated: 

Publicado por en No hay comentarios:
Etiquetas: , , ,

lunes, 21 de agosto de 2023

Security. Tools. Check URLs phishcheck.me

 Purpose

Extract information from a link and verify it.

Steps

Link: https://phishcheck.me/    ;-)






by GoN | Published: Aug 21 2023 | Last Updated: Sep 5
Publicado por en No hay comentarios:
Etiquetas: , ,

viernes, 28 de julio de 2023

Security. OSINT. Tools. Check URLs

Purpose

Extract information from a link.

It is impressive the information that comes to extract in such a short time.

Steps



One example




by GoN | Published: Jul 28 2023 | Last Updated:
Publicado por en No hay comentarios:
Etiquetas: , , ,

martes, 9 de mayo de 2023

WINDOWS. Security tips

==========================================================
Some important security tips that will strengthen the security of Windows
==========================================================
Change the KRBTGT password regularly, at least every 180 days

Don't use domain administrator credentials to log in to client PCs

Eliminate breached passwords in the environment

Encourage the use of passphrases for passwords

Enforce least privilege in your Active Directory environment

Enforce strong passwords using good password policies

Implement good security practices for domain controllers, protecting privileged accounts with strong passwords

Implement the Microsoft Local Administrator Password Solution (LAPS) for local accounts

Increase your overall security posture by following best practices in the environment

Limit the number of users with admin rights

Monitor accounts with the adminCount attribute set to "1"

Monitor changes to domain groups and other activity

Monitor for suspicious activity, such as unnecessary Kerberos ticket requests

Monitor service account use and other privileged accounts

Monitor the adminSDHolder ACL regularly for rogue users or groups

Prevent account password reuse

Prevent the use of incremental passwords or breach passwords

Protect your environment from privilege escalation attacks

Remove unnecessary accounts from Active Directory, including service accounts

Use extremely strong passwords on service accounts and rotate these

Use hardened workstations as admin jump boxes

Use strong passwords

Use strong passwords across the board

Use strong passwords on all protected accounts and service accounts

Use strong passwords, especially for admin and service accounts



by GoN | Published: May 9 2023 | Last Updated:
Publicado por en No hay comentarios:
Etiquetas: ,

sábado, 14 de enero de 2023

WINDOWS. GPO. Install deploy software

 Purpose

How to install programs automatically through GPOs

Information

Identify the most important parameters

Steps

Create the GPO and play with this options



by GoN | Published: January 14 2023 | Last Updated:
Publicado por en No hay comentarios:
Etiquetas: , ,
Suscribirse a: Entradas (Atom)