How to Catch A Hacker In Your Computer

Sponsored: Get 25% off Blinkist premium and enjoy 2 memberships for the price of 1! Start your 7-day free trial by clicking here: www.blinkist.com/thiojoe

The hacker watching me watch this video :

6:39 A way to effect group policy editing changes on a Home edition is to do it on a Pro/Enterprise/Server version then go to the registry and export the policy that was set, copy the exported .reg file to a Home version and then merge into its registry.

The folder trick made me laugh, one guy who annoys scammers had a folder called “nudes” the scammer took a look and it was naked mole rats 🤣

Another trap potential: an autohotkey macro. You let the script run while you AFK, and if any button is pressed except the one specified, another script runs.

It would also be useful to set up a trigger for if anyone tries to change Group Policy, as smarter malware might mess with that before copying anything.

Hackers watching this: 💀 Edit: Guys stop liking this my notifications explode.......... (Btw yes, my comment has 10x more likes than the creators lol)

Thank you. This is definitely bookmarked in case I need to use it and follow the instructions closer. Really appreciate your time in making this.

Windows will cache icons so the folder token probably stopped working for that reason. I imagine the idea is once it's triggered once you don't necessarily care if you miss subsequent triggers, so it's fine if the icon cache causes it not to retrigger. Keep in mind auditing is off by default as it tends to slow down file access. So this may not be the best solution depending on your hardware. That said if you set it up for only specific files you're probably ok. Also keep in mind as you said lots of applications have legitimate reasons to sneak a peak at arbitrary files, but this extends beyond the search indexer. For example AV scanners, Windows Explorer trying to generate a thumbnail, etc so audits may not be as useful as you might think.

Thank you. Very clever traps and alerts using Windows files and folders.

excellent video! this is all great information to have and I would love to learn more about what I can do with task scheduler!

I think every Group Policy setting can be changed directly in the registry if you know where, regardless of whether you have Home or Pro versions of Windows. So that might be worth looking into for anybody stuck with Home.

I do have to say I'm so glad you got away from troll content, as much as I loved it back then too, to something so much more useful overall to everyone. Definitely seems like a good pay it forward!

My message for the shutdown would be something like "Warning! the self destruct sequence has been activated. The computer will explode in (seconds)

Simply don't leave your computer unlocked. Create a desktop shortcut to immediately lock the OS and use it. You can even create a script to not only lock the screen but to display a fake background of some kind of work/development taking place to throw off the nosy busy bodies.

Good ideas, thanks for this info.

Here's an easy-to-make "silent alarm" type of trap: Make a shortcut to a batch script that looks like a folder, and make that batch script write a file somewhere or otherwise alert you, then open the folder as normal. I dunno how to make CMD run silently though. You could also pull a prank and make it do the shutdown command instead, preferably with a custom message :P

Thanks for the in depth info. Will refer back for reference. 👍

Canary token can also be used for defenders and security professionals because they can use to lure attackers into revealing their presence or actions. great content!

Thanks for the video on auditing file access.