Batch file from symposium sorry for poor quality - The Great Awakening

Batch file from symposium sorry for poor quality (media.communities.win)

posted 3 years ago by roboarmy 3 years ago by roboarmy +34 / -0

10 comments download

10 comments share download save hide report block hide replies

Comments (10)

sorted by:

▲ 4 ▼

– roboarmy [S] 4 points 3 years ago +4 / -0

As well there is a folder called GPO that is a group policy object. This would indicate it is getting updates via group policy a windows domain service.

permalink save report block reply

▲ 3 ▼

– pedeITA 3 points 3 years ago +3 / -0

seems to

change configuration file for a database

copy group policies files from the local directory to the windows one

add something to the registry (not clear what or where)

messages

add a key in the registry and parameters for dominion EMS

messages

add a key in the registry for SQL server (superSocket it's related to the network / certificates )

stop sql

start sql

start sqlagent

permalink save report block reply

▲ 2 ▼

– xJukEx 2 points 3 years ago +2 / -0

This is a script to make sure a group policy is set, It then pulls sql settings from registry, It then Restarts Sql

so what we need is a copy of that group policy.

permalink save report block reply

▲ 2 ▼

– roboarmy [S] 2 points 3 years ago +2 / -0

It looks like it is turning off or replacing security configurations and restarts services.

permalink save report block reply

▲ 1 ▼

– deleted 1 point 3 years ago +3 / -2

▲ 1 ▼

– deleted 1 point 3 years ago +2 / -1

▲ 2 ▼

– solarsavior 2 points 3 years ago +2 / -0

Yeah, analyzing this stuff live isn't a good approach at all, unless they're trying to spook the bad guys. Drip, drip, drip. Analyzing all of this stuff and what is going on sometimes takes days. You want to be very certain of what you see, what you understand, and what you can prove before making an accusation.

permalink parent save report block reply

▲ 1 ▼

– KoalasAteMyFace 1 point 3 years ago +1 / -0

You got it. This show is only partly for us.

permalink parent save report block reply

▲ 0 ▼

– solarsavior 0 points 3 years ago +1 / -1

Been watching.

"ECHO --SQL Server de-hardening--" (this prints "--SQL Server de-hardening--" to the command line session)

Might be something. Might be nothing. Sometimes you might need to de-harden something to do an upgrade or such. But where is the re-hardening?

permalink save report block reply

▲ -1 ▼

– watchman87 -1 points 3 years ago +1 / -2

kinda means nothing in the grand scheme of things. i'm pretty sure this is just whats going to be used in Lindells defense against Dominion

permalink save report block reply

To The Great Awakening

We are researchers who deal in open-source information, reasoned argument, and dank memes. We do battle in the sphere of ideas and ideas only. We neither need nor condone the use of force in our work here. WE ARE THE PUBLIC FACE OF Q. OUR MISSION IS TO RED-PILL NORMIES.

This is a pro-Q community. Please read and respect our rules below before contributing.

WHY Q?

"Those who cannot understand that we cannot simply start arresting w/o first: ensuring the safety & well-being of the population shifting the narrative removing those in DC through resignation to ensure success defeating ISIS/MS13 to prevent fail-safes freezing assets to remove network-to-network abilities kill off COC to prevent top-down comms/org, etc. etc. should not be participating in discussions." Q