This will save you so much time 😩
⇒ Become a channel member for special emojis, early videos, and more! Check it out here: https://www.youtube.com/ThioJoe/join
• The command:
auditpol /set /subcategory:”{0CCE9226-69AE-11D9-BED3-505054503030}” /success:disable /failure:enable
▼ Time Stamps: ▼
Timestamps:
0:00 – Intro
0:49 – Enabling Logging
2:17 – Creating Event Viewer Filter
▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬
Merch ⇨ https://teespring.com/stores/thiojoe
⇨ http://Instagram.com/ThioJoe
⇨ http://Twitter.com/ThioJoe
⇨ http://Facebook.com/ThioJoeTV
My Gear & Equipment ⇨ https://kit.co/ThioJoe
▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬
source
I've been doing this for years on all of the system that I administer. I prefer the log file though. One other recommendation: while enabling logging on failed packets, set the file name to domain.log, private.log, and public.log, respectively. This way you can easily know which profile is blocking it.
I noticed you have live tiles in your start menu. I've known for a little bit you can use the windows 10 start menu on windows 11 but how did you get live tiles?
Ok Joe mate I have ESET Smart Security on my machines and it pops- "Being managed by ESET" when I access the Windows Security app. So will any of these alerts show up in the Event Viewer??
Is there a similar thing to do on android? My phone's display crashes (goes black and won't turn back on without a hard reboot) randomly.
Dude, I dislike this new wording calling programs "apps". PCs aren't Androids ffs.
I like your wallpaper very skeuomorphic.
A bit to add here, you can see the XML tab, abd put it through (multi-line string) Get-WinEvent command with the parameter -FilterXML, and choose whatever columns you want to see, and then export it to csv/excel/html/whatever format. Just in one line. It's easy and elegant, and PowerShell was meant to be usable in such ways as well
WOAH WOAH WOAH… I’ve been watching this guy for two years now and just realised I haven’t been subscribed the whole time. That changed today. June 8th, 00:00 BST
Umm There Is a Application For It Called Safing's PortMaster Which Will Log Network Events And There Is a Built in AdBlocker Too……I Been Using this and it's Really Good! 👍
One man's pretty straightforward is another's Cretan Labyrinth.
Always learn something new. Thanks!
Very useful. Thank you, Joe!
There was a time when the al-ghoul-rithm favoured 10 minute vids.
But I seem to remember a certain amount of hubbub about that no longer being true, over a year ago maybe more.
And with /shorts, you know…
Very good thing. Ironically first blocked ip has Microsoft ones.
WHY DOES IT ALREADY NOT HAVE AN AUTO DUMP FILE FEATURE AND KEEP THE BLOCKED PARAMETERES = ITS SO IF YOU MAKE A MISTAKE AND REMOVE IT = THE CRIMINAL ATTACKING YOUR PC CAN NOW RELOF INTO YOUR SHT !!!! THIS IS RETARDED , TOLD THEM 7 YEARS AGO , BUT HERE WE ARE WITH ANOTHER CRIMINAL CYBER TERROPRIST HAVING THEIR SAY MEANWHILE SOME LITTYLE OOLD LADY CANT EVEN FIND THESE OPTIONS OR HAS AA TERRIBLE TIOME WITH IT AND THEN ALL HE LIFE IS GONE , THIS IS STUPID , THEY REMOVED FEEATURES TO ALLOW A 3RD PARTY REMOTE ACESS LONGIN , NOW THEY ARE ALLOWING CRIMINALS EASIER ACCESS TO EVERYONES SHT !!!
thanks
is this something that Wireshark logs? I am currently installing it and wanting to learn it.
Thanks for sharing, this is super helpful
FIle .log can be red (and formatted) with Visual Studio Code
Nah Joe it would have to be fine tuned according with storage space available to the system. Like , imagine running this default without rotating the log, it would be a mess and users will (rightfully) complain about space
Fantastic video. I was interested in going against Windows Firewall convention to build a whitelist for outgoing connections (default allows all outgoing but block incoming) as a way to further harden a Windows system.
Very, very usefuk (as always).
This is great thanks. I usually just quickly turn off the firewall if I'm having issues to verify that it's responsible
delete all blocked exe? virus?
Great tool!
Thank you!
this is make me cant play on my minecraft server, thanks
You don't say how to make the custom views human-readable… or are custom views always thus by default?