Network Security Tools to stop hackers
Vložit
- čas přidán 20. 04. 2023
- How to not get hacked: a guide to network security covering fundamentals like firewall and intrusion detection tutorials.
Get Crowdsec Free : crowdsec.net (sponsor)
Buy the best antivirus: thepcsecuritychannel.com/best...
Get your business endpoints tested by us: tpsc.tech/
Contact us for business: thepcsecuritychannel.com/contact - Věda a technologie
For everyone commenting: router login can't be accessed without being on the network, I was trying to communicate the concept of default credentials in the router, both for admin and wifi, as it opens paths for attackers to exploit, ofc it is never as simple but it is impossible to cover everything in minute detail in a 10 min video, the goal is to cover concepts, if I went into a complete explanation of router config, it would be a 30 min long router tutorial which is not the goal of this video.
umm, no. you just have to show the wifi password window instead
@Anusol Plus This is pretty bad advice, it's possible to brute force or bypass, or even to gain access through something as simple as social engineering. It's also the kind of mentality that, on a larger scale, leads to problems. That is the aim of the video, to educate you to take action on these things to avoid the worst happening.
In France, one ISP called Orange made a critical mistake where customers were able to connect to other Orange customers network, without consent. 🤣
@Anusol Plus actually no, not everywhere. Where I am from some routers are sold with the same wifi and admin passwords
FRITZ!OS has an option to enable access from the internet.
But it's disabled by default.
Great video I'm a student in Cybersecurity and first time using Docker and this was the easy install that I have seen in awhile. Tried it natively but it was more harm then good so the Docker was a great choice.
If you are to install Crowdsec in docker and want it to monitor the host, you have to mount the host log directory/file to the docker container. I don’t think you can just simply run the container with the Crowdsec image and expect it to monitor the host.
and how do you do that?
👍
First of all, great explanations of the different technologies that each of these products relate to. If someone is starting from zero it will be a great place to start getting some pointers as to what to look for and start making a personal plan for creating your secured network or making the one you have even more secure. I am in the middel of redesigning my home network to support internal applications used by users outside of my network. I want to make sure no one has access to any of my internal systems so I will be using some if not all of the suggested systems here. I will also be testing some other products and creating documentation mostly on my own findings. Many thanks for sharing your knowledge and I look forward to your next video upload.
Netlimiter is what I use.
Thank you, Leo.
Good video as always Leo! Thanks for sharing with us!👍💖😎JP
You have a great channel and I was curious do you currently use Crowdsec with Sophos firewall? Do you run it inside docker. I was just curious and thinking about how it might be nice to run them both and the best way to do it. If you do run it like that a tutorial on the setup would be awesome and considering they are both free I think it would be very popular.
Thanks for the information, be looking for more tutorials.
It be so great to get a walkthrough of setting up sophos. Not the installation, that’s easy, but what comes after… told intercept? Rules? Etc
what do you think about portmaster firewall? it supports secure dns, blocking lists and their own SPN which is something like Tor with stream isolation but a lot faster
Fantastic video 👍🏻👍🏻
brilliant video fella
So so useful. Most people just use everything on default without hardening
Since running Kaspersky on all my devices, I have not had an issue with virus' or malware... Would be nice to have a mini PC firewall though...
Man, these videos are so educative. You are doing such a great job with this. Thank you very, very much. God bless you for this work.
Aside from glasswire, I think portmaster is also a great firewall as an alternative. It's free and you'll have a huge amount of control to your network
Yes portmaster is way more powerfull than glasswire and it's foss ! Everybody can't get a dedicaced firewall with ids/ips on it and it's pretty overkill if you don't host service and you have ports opened. Don't forget that ids ips like snort, trendmicro... throttle and divide strongly the bandwith. Except suricata, very powerfull.
@@slapme3582 I tried portmaster, but it completely blocks some things like websites (say clicked through a referral link) with no way (that I can see) to add an exception, or a one-time pass. Have you experienced this? Or have any solution? Thanks.
True
Port Master is good until you want to use it as just a firewall and not a privacy/DNS/blocking/whatever and let AdGuard do its job. It’s simple you just can’t. RAM usage is also terrible. Better use Fort Firewall or Simplewall.
@@Nastrahl Thanks, already using simplewall and considering a swap over. But will stick with simplewall.
Outstanding video 👍
In the UK most routers given by ISPs to consumers have a randomised PW on a sticker on the router, I don't consider it to be insecure to use that PW and unless you're going to put a new sticker on the router with a new PW then it can be more useful to leave it.
Please, when talking about any software product, would you mind to provide a link to the product you're talking about? That would be make it really useful for finding out more about that software. I have some troubles when trying to find out more about some of the specific software you talk about.
It would be nice to go a bit deeper in Docker it self, and CrowdSec also. Thank you!
WE NEED LONGER VIDEOS!
Great video as always.
But can you hack it?
You have a backdoor anyways 🤗
I need to join your discord. Great vid Leo!
thanks 🎉
My recommendation for an out of the box and fairly simple solution for an entire network would be running a Unifi dream router for really simple home networks or a UDM pro for anything larger. They have most of these features out of the box and with minimal knowledge needed while still letting you get into the weeds
How do you connect the pc with Sophos to the network?
Physically behind the network router or before the network router ?
If is behind the network router do you route all traffic through the pc with sophos ?
Biggest deterrent for most malware is a debugger. So install always Windbg as default even if you don’t know what’s its used for.
would you recommend glasswire or simplewall in terms of firewalls
No shade on CrowdSec, but Sophos Firewall Home already has IPS (Intrusion Prevention System) built-in. If you are going through the trouble of setting up Sophos I don't really see the need for another machine or layer.
CrowdSec is a completely different kind of IPS, it's not comparable to a network firewall appliance like Sophos. CrowdSec can integrate with NIPS solutions like Suricata (which is used in most firewall appliances).
@@jacksoncremean1664 Thanks for the response! I'm certainly no expert, and was confused as to why a separate IPS would be preferential.
Looking it up some info, would you say Sophos IPS is more of a NIDS (network) and CrowdSec more HIDS (host) based? I do have Sophos AV installed and it is supposed to do AI-based HIDS.
@@primaerr Yup, but it should also be noted that CrowdSec is intended to protect servers, it's not meant to protect computers, laptops etc.
Leo did a horrible job with this video
I have kaspersky plus. will this protect my network or do i need to get a secondary program to
Should you start doing WPA3 now?? Is it secure yet?
So good video, can i suggest a similar video but for Android phones.
Is there a free all in one software that's light on system? ( doesn't affect gaming performance if possible ) it doesn't have to be pretty or highly customizable, kind of like an install and forget software. Does such software exist? ( for windows )
Question: what about all the software we have installed on our PC's, almost all of them requesting internet access. Is that not the primary route? It's so easy to do. Self-modifying code (as one method example) will do that in an instant...turning 'acceptable' into stealth + bad. It only takes one bad actor in our installed software suite - and remember, the ones that don't 'shout' are the one's you'll never be aware of.
Question. So using Norton 360 firewall ok? Or should I download or work with more?
i use Safing portmaster father of all.
Where does Sophos fit into all this at a personal level? Does their paid service include a firewall? Also what about the NETGEAR's Armor service (which is basically Bitdefender they say)? Is that any good? Thanks everyone.
I'm sure you won't see this but have you done any testing on endpoint protection like VMWare Carbon Black? @The PC Security Channel
If I install it on the docker inside windows OS, will it protect only that docker instance? Or it will also protect the windows OS? Getting confused on this part because it was not clearly mentioned. I am particularly interested with that docker configuration not the native windows because it's clean but that is the question going in my mind right now.
I was also confused when he said it, there's no way the docket instance will block anything, at best it will detect it
@@user-xl5kd6il6c there is a setting for every container in docker that what network do you want your container (here crowdsec) to use? Options are like hosts network, make its own docker network. That's where you have to choose "hosts network".
Is Sophos Home free or a free trial? I had trouble finding posted-pricing. I'm using pfSense community right now. I feel like a change..
Always accurate. Good work
I Believe There Is NOT A STRAIGHT UP REAL TRUTH In The System
Hello Leo Thank you for this amazing education and awareness you are sharing with us all.. What I am going you ask you might not be of your channel standards.. But Could you make a content on $PatchedCache$ folders and DLL Files as these two consume a humongous space on a windows PC...
👍Thanks
Hi all. can i run glasswire and kaspesky plus at the same time?
*Can you please test the "Evorim Free Firewall" firewall* ?
Zonealarm firewall better than comodo , thanks for the video
What happens if i block inbound connections for port 445, 139,139 ? Will i loose access to RDP or damage my server ?
Wow, Crowdsec has surprisingly unintuitive instructions for their installation process, maybe it's just because I'm trying to put in on a Windows machine and am a bit clueless but I'm pretty much giving up on it.
i have bitdefender installed. will installing another firewall create problem?
You should make the opposite version of this video as well
what can i do about when my internet provider updated my router and now i can`t block someone on my network by ip address
What would turning the router firewall level to "High" even do? Why not do that for regular everyday computer/phone use? Why is "Middle" recommended?
High probably means more strict and will block more stuff. If you use your electronics everyday it wouldnt be nice having a firewall blocking majority of the things you do.
This has been helpful and unfortunately my network is not secure i hope you can help
How do you get alerted to someone getting on your computer while you are on their website?
great content but you should go into more detail, took me 45 munites to install, and i bet im not the only one
Or for MacOS there is LuLu a very powerful and free firewall
My laptop was affected by 'sage' ransomware, could you please tell me how to decrypt my files.
What if I don't have a router?.. My PC is directly connected to the Internet and has a globally addressable IP... Other devices at home access Internet through my PC...
So, anti-virus programs with firewalls,do they really work?
Firewalls that come with antiviruses are host based firewalls and only protect your computer, not your an entire network. A network firewall protects your entire network.
should I block SMB ports ?
i'm tired of finding good channel... i have no time to watch all the video ><
anyway thx
Can i use sophos firewall with kaspersky free? And can i install crowdsec with Kaspersky free and sophos firewall?
also that zte url filter rarely works.
What if you don't have access to the router? How can you blacklist websites then?
Great work Leo! I'm a fan and long time watcher of your channel. I implement the tricks and tips I see on your videos on my network. The part that has me a bit lost is the docker, do you install it on the PC? I have a laptop running windows, can I install it there? It was just confusing me because I saw networkchuck use docker and going over how it works and I thought it could only be installed on a cloud server. If any one can answer that for me It be greatly appreciated :)
Docker can be installed on both Windows and a cloud service. Basically it lets you build applications in it's own 'container' allowing control over the resources available to each container. Here they are using the crowdsec command to basically create, and install the crowdsec into it's own container. Then 6:30 is where he connected his docker container to the web management console.
Docker is a cross-platform virtualization software, which is available for every OS you can think of. You can think of the "containers" that it creates as stripped down virtual machines which have only what they absolutely need to run. That way it's efficient on storage and resources, especially if you have to run multiple containers.
But in my opinion, you should go for the Windows native install, as Docker can be a bit of a headache to work with.
Is paid ESET enough? It has a network scan and monitors devices connected.
Ask the hacker
DAM!
can a virus come as a windows update, I have an windows update queued called windows malicious software removal tool v5.113?
Probably an update to Windows MRT when you go into run and enter MRT
Dear pc security channel i have been expieriencing svchost.exe in prefetch.
I was wondering if this is a trojan/malware please respond😊
2:40 my Friend has this system set up I was able to actually hack his wifi using wps pixie dust attack which have me the password in less than 15 seconds lol then I used the same password to get into his router and his ZTE system and I had full control. This was the same dashboard he had. Lol. So much for that idea.
Bold of you to assume that the isp will provide you a router that you can login to
haha, see people are complaining about showing the ZTE router, but I know the router most people have may even be worse than what I showed here. :D
Here the video hangs at 0:18 and only get running if I foward it to 1:49. I will try it later again.
Cool thanks
If its installed inside docker, how would it recognize something outside of the container ?
If the container is using a bridge mode docker network, it can access everything
@@PaulMetalhero uhh bridge mode or hosts mode? I think its in hosts mode where it can access everything on host network.
@@KetanAggarwal Yeah, that is the one, sorry
So I always stayed away from Kaspersky due to it being a Russian company. But my take is this is your top rated. Would not the best spyware be software that scan one’s entire computer. Curious your comment.
These arguments can go on indefinitely, I personally trust Kaspersky, I like Kaspersky, but I also really like Bitdefender. Bitdefender was my preferred choice for a long time (talking a decade) but I found the software to be too buggy for me, so I switched to Kaspersky.
As for Russian company or not every anti-malware software has a host country, I mean even in the US there is a history of government agencies working with anti-malware companies like Norton to white list NSA, CIA, FBI malware as safe.
That is significantly more evidence than we have of Kaspersky working with the Russian government, is there Russian government officials in Kaspersky? Probably, but probably more on the level of spy than anything, any company which has access to millions of networks would be considered a high value target for state actors (regardless of country). If you don't trust Russia than you are trusting US, Canada, U.K. etc list goes on.
You have to trust someone with no proof they are not working against your interest.
Our router keeps on restarting every day is it normal?
Where is zone alarm firewall
Router url filters can only block http but not https so this option is useless.
deep packet inspection makes it possible to inspect encrypted traffic like https. But it requires more configuration on an advanced firewall like a Sophos Gateway. The zte router probably does not support this feature.
Well when it comes to changing the router password in our isp it's pretty useless because you cannot change the super admin account on the router and changing it can lose connetion of the router...
Block plug and play in the router!
that zte device will actually warn you to change password first time you log in
bruh can't even access my router because stupid kaspersky won't let me access it saying that it's untrust website. pausing and exiting the av still won't let me access it. I'm so pissed rn
Probably not the AV part of Kaspersky but the firewall
ZTE like the Chinese Company?
"The PC Security Channel" content creator that uses a ZTE manufactured router.
WOW.
It was just an example for people with cheaper routers.
What’s wrong with ZTE?
@@merk5789 I believe it’s owned by Huawei and the government banned it
China CCP hehehe
how could you forget Zone Alarm Free Firewall?
Oh man zone alarm still exists? I remember using it for a while almost 20 years ago. It was pretty good back then i think. Is it still any good?
the newer the router the better will be
why do you have block adult content disabled XD
You bring me back to when im banned form your discord... still am :( i think it wasn't fair in one way or another
can you test out heimdal EDR? heard some good things about it
Whelp video won't load. Guess my ISP doesn't want me to watch this video.
Hmm you didn't turn on (block) the Nudity and Adult Content option. I see how it is hahah
Well, if there are no kids in the household/network, why not? 😂
Just don't have a computer, done.
Explanation of crowdsec benefits is really poor. I have no idea why I should install it. This is pretty much ad video, except for "tip" to change admin password and enable firewall on router (which is always enabled by default). You did not even give any idea where to get blacklists from. There must be some sites with recommended URLs to block. You could also provide your URL block list from that 1M video with microsoft domains, instead of telling users to find and write it down themselves. At 3:35 you promise application firewall options "later" but they are not present in this video. Remaining 5 minutes is just poor ad...
I guarantee I never get hacked cause I don’t use the internet. This comments being made by AI
I have pfSense and it's nightmare to configure 😢
cant put docker on my windows server. xD
Part 2? I got kids that play cod and weirdos are always hitting them offline. Lol
I dont think these are made to protect against DDoS attacks. You would need a specific device for that, or a firewall with built in DoS/DDoS policies, anomaly detection etc. You could also use rate limiting and/or traffic shaping on your firewall/router
Step one: Do not run any Microsoft OS.
Lecturing on security and recommending a free Sophos firewall.... SMH😦