hate these ads?, log in or register to hide them
Page 6 of 6 FirstFirst ... 3456
Results 101 to 112 of 112

Thread: Antivirus is shit, and here's why

  1. #101
    Movember 2012 I Legionnaire's Avatar
    Join Date
    April 9, 2011
    Posts
    1,383
    relevant to our interests assuming you're not a mong and can figure out how to launch the command line

    https://www.reddit.com/r/TronScript/..._sync_disable/

  2. #102
    Mallet Head Donor 56k Lagman's Avatar
    Join Date
    May 5, 2011
    Location
    Vancouver, BC
    Posts
    3,496
    Quote Originally Posted by Tyrehl View Post
    We use mcaffee enterprise AV at work, I want to disable it and reenable Windows Defender I suspect that I may be liable but hey our IT is so lazy that they may never notice/care
    My last job used VSE and for a little while I was in charge of noncompliancy. It was a mess, we had to use psexec a lot of the time because we couldn't get access to the terminals any other way while they were in use but VSE didn't have very good cli commands. Most of the issues were with the communications agent just falling apart and being irreparable without some serious cleaning out

    Quote Originally Posted by I Legionnaire View Post
    relevant to our interests assuming you're not a mong and can figure out how to launch the command line

    https://www.reddit.com/r/TronScript/..._sync_disable/
    We were only just discussing in the windows thread how much people need to stop running scripts from reddit just for the hell of it

  3. #103
    Tyrehl's Avatar
    Join Date
    April 9, 2011
    Location
    [STUGH] Rote Kapelle
    Posts
    3,568
    Quote Originally Posted by 56k Lagman View Post
    Quote Originally Posted by Tyrehl View Post
    We use mcaffee enterprise AV at work, I want to disable it and reenable Windows Defender I suspect that I may be liable but hey our IT is so lazy that they may never notice/care
    My last job used VSE and for a little while I was in charge of noncompliancy. It was a mess, we had to use psexec a lot of the time because we couldn't get access to the terminals any other way while they were in use but VSE didn't have very good cli commands. Most of the issues were with the communications agent just falling apart and being irreparable without some serious cleaning out

    Quote Originally Posted by I Legionnaire View Post
    relevant to our interests assuming you're not a mong and can figure out how to launch the command line

    https://www.reddit.com/r/TronScript/..._sync_disable/
    We were only just discussing in the windows thread how much people need to stop running scripts from reddit just for the hell of it
    By "just for the hell of it" you mean "to stop windows from installing suggested apps without my permission" I guess?
    Also OneDrive is so bloody annoying, even after I disable "autostart" and everything related to it, it still starts and asks me for login.

    Honestly, such advice 1) uncalled for and 2) more suitable for your grandmother
    <Devec> hello captain Tyrehl
    <Devec> sailor of the persian seas
    Quote Originally Posted by Paradox
    I swear you are some sort of biological weapon developed in the early '90's for the Yugoslav wars but they lost track of you at some point and now you're waging a psychological war on Western Europe without a clue what you're doing.

  4. #104
    Lana Torrin's Avatar
    Join Date
    April 13, 2011
    Location
    Bonding around
    Posts
    17,321
    So this just in.. Symantec installs a root kit.. I mean it makes sense as it's the only way to stop other root kits, but that's going to be tough to remove when it fucks up
    Quote Originally Posted by lubica
    And her name was Limul Azgoden, a lowly peasant girl.

  5. #105
    Daneel Trevize's Avatar
    Join Date
    April 10, 2011
    Location
    T L A
    Posts
    11,846
    Quote Originally Posted by QuackBot View Post
    Idk about that, and i'm fucking stupid.

  6. #106
    Joe Appleby's Avatar
    Join Date
    April 9, 2011
    Location
    in front of the class
    Posts
    10,989
    I like OneDrive.
    nevar forget

  7. #107
    root's Avatar
    Join Date
    April 26, 2011
    Location
    The Camel Empire
    Posts
    2,734
    http://seclists.org/fulldisclosure/2017/Feb/68

    "Remote Code Execution as Root via ESET Endpoint Antivirus 6"

    So when the Antivirus checks the license, it ignores the connection certificate (do Mitm here) and parses what ever comes back with an old XML parser that can be exploited .. and of course it runs as root )))))
    The Rapier is my love boat
    ~lowsec smallscale pvp 'n stuff~

  8. #108
    Tyrehl's Avatar
    Join Date
    April 9, 2011
    Location
    [STUGH] Rote Kapelle
    Posts
    3,568
    Quote Originally Posted by root View Post
    http://seclists.org/fulldisclosure/2017/Feb/68

    "Remote Code Execution as Root via ESET Endpoint Antivirus 6"

    So when the Antivirus checks the license, it ignores the connection certificate (do Mitm here) and parses what ever comes back with an old XML parser that can be exploited .. and of course it runs as root )))))
    <Devec> hello captain Tyrehl
    <Devec> sailor of the persian seas
    Quote Originally Posted by Paradox
    I swear you are some sort of biological weapon developed in the early '90's for the Yugoslav wars but they lost track of you at some point and now you're waging a psychological war on Western Europe without a clue what you're doing.

  9. #109
    Daneel Trevize's Avatar
    Join Date
    April 10, 2011
    Location
    T L A
    Posts
    11,846
    I like how the timeline goes from 2016-11 to 2016-02...
    Quote Originally Posted by QuackBot View Post
    Idk about that, and i'm fucking stupid.

  10. #110
    Movember 2011 RazoR's Avatar
    Join Date
    April 10, 2011
    Location
    The Motherland, OOS
    Posts
    25,601
    posting from W7

    feels goodman

  11. #111
    Lana Torrin's Avatar
    Join Date
    April 13, 2011
    Location
    Bonding around
    Posts
    17,321
    Quote Originally Posted by root View Post
    http://seclists.org/fulldisclosure/2017/Feb/68

    "Remote Code Execution as Root via ESET Endpoint Antivirus 6"

    So when the Antivirus checks the license, it ignores the connection certificate (do Mitm here) and parses what ever comes back with an old XML parser that can be exploited .. and of course it runs as root )))))
    Still consider eset one of the better ones.. Least it doesn't force install Java...
    Quote Originally Posted by lubica
    And her name was Limul Azgoden, a lowly peasant girl.

  12. #112

    Join Date
    May 30, 2011
    Location
    asleep
    Posts
    5,551
    has anyoen come accross this little toy before ?

    https://www.circl.lu/projects/CIRCLean/

    a bootable rPI image that auto-cleans infected files trasnfering them to a new USB
    Please don't teach me what to do with my pc.

Bookmarks

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •