3. If someone knew your PC account password and IP address, how easily could they h...

If someone knew your PC account password and IP address, how easily could they hack into your computer?

You didn't mention where the PC is located at. If you are at home and behind a NAT, your IP will be a private/internal IP address and people from the Internet won't see your computer unless you configured it that way (example: port forwarding, etc). So your Internet facing router already acts like a firewall and you have another firewall on your PC setup by default with AV as you claim.

Let's say for the sake of argument you had the PC Internet facing (in your DMZ for example) and you had default firewall settings. If the attacker is on the same network segment as you (which probably wouldn't happen unless they were on your wireless with you on it), they could monitor your plaintext traffic and possibly perform man in the middle attacks on you. By knowing your password, they could run attacks via SMB port (445) to attack your computer. "If" you had RDP open on 3389 they could remote desktop to you but you would have to enable that first. Any applications/services exposing open ports could possibly be vulnerable too.

Making sure you have a computer that isn't Internet facing would be step-one to being safer. This also includes not being on wireless as wireless routers act like hubs in a sense. Also, closing down ports not needed, uninstalling software not used (another example is disabling PowerShell if you don't use it) and hardening your computer by using best practice configurations would help.

What are the "Best" precautions one could take to prevent compromise. Easy, turn off your computer. Seriously though, the above mentioned things are important, having a strong password, updating your software and OS regularly and most importantly, using common sense when browsing the Internet and clicking/opening anything. You can be behind a NAT, have the best AV out there, lock down ports, etc but it doesn't mean jack if you open a malicious file and/or get social engineered. I can write a payload right now that will be custom and not get picked up by any AV. If it never gets to you to run, you'll be safe. The trick is not letting it get on your computer.

/r/AskNetsec Thread
Previous
Next

Recently removed from /r/AskNetsec

Pentesters, what web vulnerability scanner do you use? Web App Pentesting Career Path Is a "security engineer" = a software dev focused on security or is it something uniquely different? What subjects would you take in hackerschool? Most reasonable way to protect Windows laptop from BadUSB? Your recommendations, I have an opportunity to learn netsec but I am at the starting line. I will be traveling to one of the countries hosting a great firewall, will only be using my phone to access anything. What kind of modifications and precaution should I be taking to protect myself from both of privacy and security perspective? Anyone interested in Advanced WiFi Pentesting Webinar? if net neutrality fails, could an online company provide a "neutral net" loophole? GCIH - using braindump questions to test my knowledge. Good or bad? Let's say you find an exploit in a vendors application. What's the best way to inquire about a bug bounty if one isn't already listed? Minimum Requirements For Entry Level Pentesting Job Can someone recommend how I can get into malware research/reverse engineering? Security clearance question What can a script kiddie do?

More Random Comments

Pelosi's San Fransisco is a Disgusting Pigsty - 3rd World Homelessness I’m Missile Rick!!! DICE’s Holiday message Giver of Gifts Title Do I need to increase weight to gain muscle? Vlad after this patch Yes, Donald Trump has been impeached Relative’s FB Post re: ER work really set me off: does anyone else see ableism in the way this EMT describes patients in the first paragraph? This is how Bernadetta was created and you can't change my mind Weekend Discussion Thread - December 20-22, 2019 There may have been a miscalculation ... -_- How am I coming along? How to improve? Honesty is the most helpful criticism. Not only is it about to be Christmas, but today marks the end of an entire decade of making millionaires. We will be picking the last winner of 2019, and all you have to do is comment to enter, and you can win some cash for you and your family this New Year! [Drawing Thread #49] So I found this on the internet Western veganism is a diet of privilege and science. Without money, you can't be a vegan here. Without science, you can't be a vegan at all.