Differences

This shows you the differences between two versions of the page.

--- guides:lockdown_black_team [2020/04/24 06:41]
aibekzhy
+++ guides:lockdown_black_team [2021/04/27 02:57] (current)
aibekzhy
@@ Line 46: / Line 46: @@
     - Disable/Uninstall Windows Defender (Registry/GPO)
     - Disable Windows Updates (Registry/GPO/Services)
+    - Make sure ansible deployment has a unique AD_Name for every host, to avoid hostname collisions
+    - Allow remote connections to the computer, under "Remote" tab of System Properties
     - Ensure Sleep is disabled
     - Try to Debloat as much as possible: https://github.com/Sycnex/Windows10Debloater (Might not worth it)
@@ Line 64: / Line 66: @@
   * Ensure you take a snapshot of the entire infrastructure after deploying your malware
   * Manually login to every VM after the red team is done pre-staging. This ensures that everything is still operational, and in addition, it loads a lot of things from disk to memory, which ensures a smoother experience at the start of the competition.
+  * If the performance of VMs is very slow, try to lower the number of snapshots or use the snapshots that were created are no longer than a day before the competition.
@@ Line 119: / Line 122: @@
 **Note: %02d just represents a padded 0.**
+Aibek to Aibek: PLEASE FIX ANSIBLE RELATIVE PATHING