[a / b / c / d / e / f / g / gif / h / hr / k / m / o / p / s / t / u / v / vg / vm / vmg / vr / vrpg / vst / w / wg] [i / ic] [r9k / s4s / vip] [cm / hm / lgbt / y] [3 / aco / adv / an / bant / biz / cgl / ck / co / diy / fa / fit / gd / hc / his / int / jp / lit / mlp / mu / n / news / out / po / pol / pw / qst / sci / soc / sp / tg / toy / trv / tv / vp / vt / wsg / wsr / x / xs] [Settings] [Search] [Mobile] [Home]
Board
Settings Mobile Home
/pol/ - Politically Incorrect


Thread archived.
You cannot reply anymore.


[Advertise on 4chan]


File: Capture.png (28 KB, 594x343)
28 KB PNG
So I can access this shithole on company laptop.
>>
kek
>>
>>538737232
Lol, wagie problems.
>>
>>538737232
kek you're gonna get fired
>>
>>538737232
Ask claude
>>
>>538737232
On a different computer:

1. Download rufus.exe
2. Download a Linux .iso (Mint, Fedora, Puppy Linux, etc)
3. Use rufus.exe to make a bootable USB drive.
4. Turn off the company laptop.
5. Insert the bootable USB into the company laptop, boot the laptop, press whatever key gets you to the boot menu, select the USB drive as the boot device.
>>
>>538737232

Simple, create a bypass group in the ZIA/ZPA admin portal with your device or UPN in it, telling it to ignore all inspection/filtering for your device and/or user.

I mean, you ARE the sysadmin aren't you?

>>538737541

>Not password-protecting the BIOS/locking down boot selection

Well yeah if your IT department is silly enough to have not done that it may be an option.
>>
>>538737232
I'm a zscaler engineer at my company. First I'll say zscaler sucks and is a jeet company.

Options:
Make another interface and route your non work traffic over that. I can almost guarantee your zscaler admin hasn't set the setting to scan all interfaces.

Or if you have a Mac just force quit the application.

Block zscaler ports from a hardware firewall within your home network. Port tcp-9000 is a Key one, just look up the others and hard block all "ZIA public IPs", Google it or use ai

Only use IPv6 or ask your admin for an IPv6 forwarding profile. If they don't have IPv6 enabled and you have a IPv6 forwarding profile, you'll bypass zscaler lol
>>
>>538738330
>>538739007
I could try these, but I'm afraid they may log me doing it.
I've been trying to find alternative ways to access but, so far, only archive sites work. 4chan and 4channel remain blocked.
>>
>>538737232
>Can't go a few hours without checking in on this cunt of a place
Anon... You don't understand how badly you need help, do you.
>>
>>538739410
I effectively work for 2/3 hours if even that. I have nothing to do.
>>
>>538739295
They can see the blocks too btw. Are you working remote or at an office? Does your work computer have the little blue zscaler icon in the system tray or is the entire office routed through a zscaler instance?

If you're remote, just get a person computer.
>>
Use your work computer for work.

Turn off wifi and use your phone to brainrot on 4chan when you're not working.
>>
File: 1254578578410.jpg (26 KB, 512x384)
26 KB JPG
>>538739007

>I can almost guarantee your zscaler admin hasn't set the setting to scan all interfaces.

When was the last time you even used it? ZIA can be divided into on/off trusted networks based on subnet/etc to a degree, but by default it'll capture any and all traffic except whatever you exclude.

If you don't have local admin on the device, only way around it is booting to another OS (if BIOS is unlocked) or finding some way to kill the service (assuming they weren't silly enough to leave it unlocked so you can just right click and exit the client anyway) which short of running some exploits that'll throw up even more flags in whatever AV/XDR suite they use is not going to happen.

OP needs to stop fucking around on company devices though, fuck I hate users like that fucking shit up and making my job more tedious with their self-inflicted issues.

If you're at home use your own fucking device it's not hard. If you're in the office, be a lazy fucker on your phone if you must.

-t. actual sysadmin who has implemented Zscaler products multiple times (and yes it's jeetware I know but it actually does work more or less)
>>
>>538740465
>Found another one
Better check you ZCC profiles one more time, mate.

How do you feel that you'll need to redeploy literally every app connector since they made the /boot partition too small and their "automatic OS updates" for app connects has been completely hosing servers for weeks now. The announcement will be coming soon if it hasn't already. Every single app connector you have will need to be reprovisioned.

>No refunds
>>
>>538739582
I work at an office and yes the laptop has zscaler installed. That's also the reason I was trying to find alternative ways to access. I heard you could type the link in google translate and access that way but that seems to have been patched.
I could as anons >>538739649
>>538740465 have said, just use my phone but it's just not the same.

I do have local admin but I'm guessing anything I change will be logged and I'll get in trouble.
>>
>>538740687
I'm going to tell you the truth.

You are under MKultra

everyone on this thread is. "Wizz Kids" groomed through Gate and parallel programs.

Your need to connect with 4chan is because your handlers are here.
>>
>>538740687
You need to find the partition in your mind that the handlers access via Chmod777 commands

once you are there - you need to access the daemons installed via Chmod999

That's the truth.
>>
File: 1614202306270.gif (1.64 MB, 500x500)
1.64 MB GIF
>>538740634

>Better check you ZCC profiles one more time, mate.

The virtual adapter it creates listens to every interface by default (that's why e.g. your ZPA rules will work on ethernet in the office, and keep working once the user takes their laptop onto wifi when they walk into a meeting room).

Though I haven't tested adding a new e.g. USB network adapter to a PC -after- the client has already launched, but I assume it'll catch that too, surely.

>Every single app connector you have will need to be reprovisioned.

Only have four (all in Azure) and already had to redeploy them last year with the new RHEL build once they dropped support for the CentOS ones (which was fair enough as CentOS was kill).

Haven't had any alerts from them yet but wouldn't surprise me if the jeeties did fuck the image up in some way requiring redeployment, but it takes like 5 minutes to spin up the provided pre-made image in Azure and plug in the key to connect to your instance, I can live with that after the BSOD fucking Crowdstrike gave me a while back.
>>
File: hm.jpg (250 KB, 791x861)
250 KB JPG
>>538740687

>I do have local admin

Then you can literally just stop the service from starting in 50 different ways even if they enabled the password feature.

>I'm guessing anything I change will be logged and I'll get in trouble.

If they have a decent XDR solution then yeah, probably, but they also probably won't care as long as you don't fuck the device up.

But if it's the kind of IT department giving users local admin in >current year though, they're either completely incompetent or don't give a single fuck in the first place anyway.
>>
>>538737232
Use the paycheck your work gives you to buy a laptop you own, then you can do whatever you want on it. Any other option is asking for that paycheck to be taken away.

t. cybersecurity fag



[Advertise on 4chan]

Delete Post: [File Only] Style:
[Disable Mobile View / Use Desktop Site]

[Enable Mobile View / Use Mobile Site]

All trademarks and copyrights on this page are owned by their respective parties. Images uploaded are the responsibility of the Poster. Comments are owned by the Poster.