輕量經 Windows 11 作業系統

 輕量級的 Windows 11 作業系統，由 NTDEV 製作

• tiny11：最新版基於Windows 11 23H2，可以安裝中文語言包，映像檔大小3.5G。
• tiny11 core：映象檔縮小到 2GB，刪除 WinSxS、Edge等功能；不建議用於正式環境，安全性無法更新。

USB Host to Host Data Transfer

https://paste.debian.net/plainh/41a6af40

PL27A1 Super-Speed USB Host to Host Data Transfer Controller

The PL27A1 is a single-chip SuperSpeed USB 3.0 Host-to-Host bridge controller specially designed for USB host to host data transfer.

The PL27A1 chip offers external firmware customization for various data transfer mode protocols: 

• WINUSB(Transfer cable) 

• CDC/ACM (USB Serial Device) 

• RNDIS (Network Cable)

實際產品

• ThinkPenguin.com (TPE-3TRANCBL)
• StarTech.com USB 3.0 Data Transfer Cable (USB3LINK)
• Plugable USB 3.0 transfer cable (USB3-TRAN)
• 伽利略 USB3.0 跨系統對傳線(CBL-307)：規格參數 - Windows, Linux
• j5create JUC100 USB 2.0 資料對傳線：規格參數 - Windows, Linux

設定 BIND9 伺服器

關於 BIND 的設定之前(2014)有寫過一篇，不過年代久遠。兩相對照語法，其實架構沒太大改變。現在都用免費託管方案 Cloudflare DNS 顯少自己維運，畢竟還是有機會被打爆。

/etc/bind# vim named.conf.local

zone "example.com" in {
  type master;
  file "/etc/bind/db.example.com";
};

/etc/bind# vim db.example.com

$TTL    86400
$ORIGIN example.com.    ; base domain-name

@  IN  SOA  dns.example.com. admin.example.com. (
   20230909    ; Serial
   43200       ; Refresh
   3600        ; Retry
   1209600     ; Expire
   180 )       ; Minimum TTL

; Nameservers
@                  IN  NS  dns.example.com.;

; Records
dns.example.com.   IN  A   [IP];
test.example.com.  IN  A   [IP];

/etc/bind# vim named.conf.options

options {
  directory "/var/cache/bind";
  dnssec-validation auto;
  
  auth-nxdomain yes;    # conform to RFC1035
  listen-on-v6 { none; };
  listen-on port 53 { any; };
  allow-query { any; };
  allow-query-cache { none; };
  recursion no; 
  also-notify { };
};

開源XDR平台 - Wazuh

開源的 XDR 平台！感覺安裝不會太難，但要On Premise維運不知能不能做到？

Wazuh is a free and open source security platform that unifies XDR and SIEM protection for endpoints and cloud workloads.

端點(agent)支援的作業系統有 Linux, Windows, macOS

The Wazuh agent is multi-platform and runs on the endpoints that the user wants to monitor. It communicates with the Wazuh server, sending data in near real-time through an encrypted and authenticated channel.

然後概念驗證(POC)章節有提到怎麼觸發告警

• Detecting suspicious binaries
• File integrity monitoring
• Detecting an SQL injection attack
• Vulnerability detection

RDP 連線側錄工具(RecordTS)

RecordTS™ is a Windows remote desktop session recording software that can monitor user activity on-premise or in the cloud.

RecordTS 是當使用者連結至伺服器、工作站、終端伺服器或 Citrix 伺服器時，用來紀錄遠程桌面工作階段活動的軟體。所有的活動皆會被記錄，當中包括按鍵、滑鼠移動、檔案下載等，沒有任何遺漏。

TSFactory's RecordTS Single Server Edition is a compact, efficient and powerful recording solution for Windows remote desktop sessions.

• One year subscriptions start at $495 USD

一年的訂閱費用好像很親民，不知實際用起來怎麼樣...

Cloudflare CDN

 Cloudflare CDN

長青款無線網卡 TP-LINK TL-WN722N

新舊型號都是：TP-Link TL-WN722N 150M

用了十年的無線網卡總算壞了！太神了這產品，難怪網通設備毛利率普遍一般，東西太耐用。

而且完全相同型號(晶片有換)隔了十年竟然還能買到，跟本長青樹等級。

.

IP Geolocation API

 幾個比較有名的 GeoIP 服務

https://ipstack.com/

https://www.maxmind.com/

https://ipinfo.io/

https://ip-api.com/

UiPath 快速入門

安裝外掛

SetupExtensions.exe /edge-policy-offline
SetupExtensions.exe /Firefox-Policy-Offline

RPA(Robotic Process Automation) 工具列表

Robotic Process Automation (RPA) Tools

1. UI Vision RPA
2. Taskt
3. OpenRPA
4. Power Automate