ok so without the opsec fail.. i'm doing some reserach into low cost family cyber security. I've bought a 200 quid laptop and I'm creating a fake virtual family member for me (a youngling). So i've configured the laptop and setup a microsoft account.

so this is cool, so they sign in and create an MS account.. they put in their DOB.. coz MS know's they are young the OS stops them and asks them for parent auth (so kids if u wanna bypass this u can simply have another MS account and be ur own parent :P )

but i digress! so, as a parent setup the kid with an MS account and configure the win10 device. ONce u've attached ur kid to ur own MS account go striaght in and configure content protection (activity) rules to block bad weebs and apps https://account.microsoft.com/family 

so u'll see this screen to start with... go configure that Activity reproting shizzle!

ok now i'm gonna move back from being a parent role to being the 'virtual child' role on the new laptop! Time to HAX HAX HAX (well we'll see right)

Ok so I’m IRL on a Windows 10 teeny laptop

Ok weirdo but yolo let’s move on click retry and get this... retune ur super secret agent passphrase

So we set kiddo a PiN! And we are in!

So let’s teach kiddo to patch! And also xomg there’s a cam!!! let’s cover that up!

Thabks @PaloAltoNtwks we’ve now covered our virtual kids camera! Great we’ve got updates applying, we’ve locked down the activity using @Microsoft family controls! Let’s keep going!

Ok so for 200 quid we don’t have bitlocker ( please add this to help protect kids please @Microsoft) sorry about the pics but can’t SS irl!

Ok so let’s see where we are... as a normie I just setup the laptop with a new kids MS account. Ok so they are admin.... so we probably wanna change that as well!

Ok cool thing sorta is that this windows edition doesn’t support RDP! But I’m a kid and I’m gonna try hax so what other remote control stuff can I install! Let’s try team/viewer...

Ok let’s see if we can be scammed but also I wonder if we can get VNC installed...

Ok so I remembered ive got this Oman isolated network with bandwidth control so let’s move to another normal style segment... tmrw I’ll setup a home soho router and use that but for now the hax must go on!

Ok so let’s move to another segment with no isolation! And sure click yes coz most will

Ok so I’m now on a less restricted network and I’ve run teamviewer. And ok so it’s got a code up on the screen

Ok so this probably will work...

Ok so now I’m sitting at my ‘scammer pc’

ok so I'm now remoted in! great I can take beter screenshots! :D but parents be aware that after only a few clicks a scammer could get on ur kids PC with a default config and a bit of social engineering! so we need to add more security than default config!

remmeber my little red torro hate scammers and eats malware so I'm doing this to try and help show what IRL cyber threats to normies look l ike! hopefully this will helpo some peoples!

so there's loads of considerations going through my brain but the first one is BACK THE DEVICE UP... now let's see what we can do with backup on home edition

so ok if ur on a low budget just get urself a USB drive and u can backup to that.. i'm gonna see if we can backup a network drive coz that's way simpler for normies (again save stuff in onedrive for simples recovery of dataz)

so assume I've backed up - I'm not doing that at this time of night. so lets check out our host based firewall. awseome we are on a private network (maybe that's not great) and the firewall is ON!

gtood news is this looks like most things aren't enabled... let's hit up a port scan to check this works (never trust anything until you have tested it (and test on a regualr basis right)

quick common port scan on standard nmap ports

ok so network discovery enabled TCP 5357 to be open but that's it! great ish (i mean u probably don't want that on...)