วีดีโอ

You're welcome!

I believe I just went with the default of having it off. I made an updated video for the newer versions of virtualbox, here's the link! th-cam.com/video/UXxaocM_Ovs/w-d-xo.html Hope that helps!

Pretty much.. There's a section in the article from Jumpsec that talks about defense, but he's not very optimistic about it. Sunny Chau, the author of the article is having a webinar this Friday at 5:00 GMT if you're interested, here's the link! app.livestorm.co/jumpsec-labs/please-mind-the-cap?s=e2a95bd6-ac5c-4ae9-839d-a25781cafaad

I haven't tested hello, but from what I've read, Evilginx can bypass Windows Hello for Business if insecure fallback methods like SMS OTP are enabled. Basically it downgrades the MFA method if the tenant is configured to allow it. blog.hypr.com/thwarting-evilginx-attacks-on-microsoft-entra-id There's a paragraph about Windows hello. Also check out my video about Tokensmith!

Sure thing, happy to help! Hit me up at info@synacktime.com and I'll see what I can do.

Thank you! I need to remake it since they've changed a few things around 😊

Thank you for the suggestion! I've started zooming in with OBS recently, if you see any of my new videos, let me know if you think it's better!

Nice job!! Thank you for the update, I'll be sure to check it out!

Yep! I have a few sock puppets I use for OSINT and just set them up with bitwarden accounts, but this would make it much easier to track any email they received. It's a very interesting project :)

Great questions! You can create as many boards as you'd like and Wekan has an awesome permission system so you can give access only to the people you want, it's not an all or nothing thing. I think this would very much fit all your needs. The only commercial thing they really offer is commercial support, but it's been around for quite some time and has a very engaged community.

You can totally use the bitwarden mobile app to connect to a self hosted server like vault warden. It should be under the settings menu of the app.

Totally agree with you on this! It's been requested on his site and it looks like that's something he's considering. As it stands right now though, it's a one by one process. Great question!

It is possible to run without Portainer, but it will definitely make things a lot easier to manage! I do have a video on how to build your own server with docker and portainer if that helps!

Basically the same way! I'd start with Portainer first. I'll see if I can dig up the instructions tomorrow!

Yup! You can run docker on Windows if you want :)

I think it's much more secure and you don't have to open any ports since your client connects to the server, so do you and that's how communication is established.

Great question! Some people just enjoy the open source transparency of a project, even if it's providing the exact same function. There are also others who prefer not to pay for the software but want all the bells and whistles.

@synacktime well bitwarden is also open source last I checked

You're totally right, didn't know if their server was open source. I saw some discussion a few months back about them changing some of their open source policies. Personally I pay for them, I think they provide an excellent service. Looks like VaultWarden's main reason is that their software is much less resource intensive.

@@synacktime yeah I believe they have a newer docker beta option that is supposed to reduce the resources

@ Which one would you prefer to run? Official or unofficial? I think I'd probably lean more towards official if I was hosting it commercially, but on the fence about personally :)

Woo! As long as I helped a bit, that's all that matters :) I learned a thing or two about Portainer this weekend as well, can't wait to share!

Thank you!!

Really? I'll have to check it out! In my video from yesterday I combined tokensmith and evilginx so I wouldn't need anything from the user's browser. 😁

Can you ping an IP address like 8.8.8.8?

Hey bud! Try this command.. I think this should work for you! You'll have to setup all the keys first ;) docker run --rm \ -v data:/backup/data \ --env DROPBOX_REFRESH_TOKEN="REFRESH_KEY" \ --env DROPBOX_APP_KEY="APP_KEY" \ --env DROPBOX_APP_SECRET="APP_SECRET" \ --env DROPBOX_REMOTE_PATH="/somedir" \ --entrypoint backup \ offen/docker-volume-backup:v2

Have you considered running it on a virtual machine? There's also raspberry pis or you can do what I do and that's renting a VPS for about 20 dollars a year. Happy to discuss any of those with you!

Haven't used colab before, I'll take a look at it though! Thank you for the suggestion :)

Interesting! I'll have to give that a try :)

I love n8n, just need to figure out what to do with it :D

Thank you for the kind words! :)

My pleasure!

Thank you! I'm really enjoying it so far!

Happy new year to you too!! Thank you for the comment ☺️

I'll do my best! Thank you! 😊

😎

So I uploaded a version without music if it's driving you guys crazy :D th-cam.com/video/JrINlFLvTW0/w-d-xo.html

Thank you, Blaine!! Nice to have you here :)

Yea, that's true. Evilginx is old too and most threat actors have moved on to more sophisticated software that's not open source. Funny thing is that Microsoft's phishlet still works and they're still a huge target. There are tutorials out there on making your own phishlets. I've personally never tried, but it didn't look too complicated and required the use of burpsuite.

Yup :)

Thank you so much! I may have to come visit one day, heard it's beautiful over there! :)

Good question! Mostly because I had never heard of it :D Honestly just went with what popped up when I typed owncloud docker into google :) Maybe I should give it a look!

That is an excellent question! I can't find any information about that, probably too new to know. If you try it and it doesn't work, I'd love to know!

@synacktime I did on my Pi5 and it didnt work, it seems that Arm package isn't available then.

Thank you for the update! Hopefully that'll be something he'll support. I know this is really new and with developers like this, they're usually open to suggestion! I'll start a feature request on his github.

@@epsipsychpt I put a request in and Mitch said he didn't have any issues running it on his Pi5. Check out the thread here - github.com/dendianugerah/reubah/issues/11

@@synacktime hey I've seen your issue and I am sorry for my confusion I guess, I've now tried again compiling reubah through docker on my pi5 and it works , but I could swear that last week I tried and it wasn't working my bad, but since I could see no mention of arm support I got confused. Thank you for your support and recommendation of this software, great channel btw!

When I was an IT director for a small business, I started with ownCloud but switched to nextcloud because we wanted to have more features and we were ok with community support. I think nextcloud is more modern and bleeding edge. Last I heard they were still running it. 😊

You're doing a great job! Thank you for your generosity!

Happy to help and thank you for the sub! 🙌

Have you looked at owncloud? I could do a video about that, but that would basically do exactly what you're looking for. :)

Did you get this working? I don't think I've ever heard it ask about a PAN interface and when I google it, looks like that's a Palo Alto term. Was PAN a typo?

@@synacktime no sir , it did not work yet :( and no sir it is not a typo

@@rdt777 Weird! They must be changing things around. Maybe I need to do an update to this video. I'll investigate today or tomorrow!

@@rdt777 Made this update for you, let me know if it helps! th-cam.com/video/UXxaocM_Ovs/w-d-xo.html