Blog
Search all our posts or browse some of our most recent entries below:
7MS #521: Tales of Pentest Pwnage – Part 36
This podcast is sponsored by Arctic Wolf, whose Concierge Security teams Monitor, Detect and Respond to Cyber threats 24/7 for thousands of customers around the world. Arctic Wolf. Redefining cybersecurity. Visit Arcticwolf.com/7MS to learn more. Hey friends! Today's another swell tale of pentest pwnage, and it's probably my favorite one yet (again)! This tale involves resource based constrained delegation, which is just jolly good evil [...]
7MS #520: How to Succeed in Business Without Really Crying – Part 11
This podcast is sponsored by Arctic Wolf, whose Concierge Security teams Monitor, Detect and Respond to Cyber threats 24/7 for thousands of customers around the world. Arctic Wolf. Redefining cybersecurity. Visit Arcticwolf.com/7MS to learn more.Hey friends, today we're giving another peek behind the curtain of what it's like to run a cybersecurity consultancy. Topics include:Setting the right communication cadence - and communication channels - with [...]
7MS #519: Tales of Pentest Pwnage – Part 35
Hey friends, it's another fun tale of pentest pwnage today! This one talks about cool things you can do when you have full rights over an OU in Active Directory. Important links to review:BloodHound edgesDACL Trouble: Generic All on OUsAD prep bug in Windows Server 2016
7MS #518: Interview with Amanda Berlin of Blumira
Today we're pumped to share a featured interview with Amanda Berlin, Lead Incident Detection Engineer at Blumira. You might already be familiar with Amanda's awesome Defensive Security Handbook or fine work with Mental Health Hackers. We polled our Slack friends and structured this interview as an AAA (Ask Amanda Anything). That resulted in a really fun chat that covered many things technical and not technical! [...]
7MS #517: DIY Pentest Dropbox Tips – Part 6
This podcast is sponsored by Arctic Wolf, whose Concierge Security teams Monitor, Detect and Respond to Cyber threats 24/7 for thousands of customers around the world. Arctic Wolf. Redefining cybersecurity. Visit Arcticwolf.com/7MS to learn more.Today we're continuing a series we haven't done in a while (click here to see the whole series) all about building and deploying pentest dropboxes for customers. Specifically, we cover:Auto installing [...]
7MS #516: Tips to Travel More Securely
SafePass.me is the only enterprise solution to protect organizations against credential stuffing and password spraying attacks. Visit safepass.me for more details, and tell them 7 Minute Security sent you to get a 10% discount!In today's episode I talk about a cool self-defense class I took a while ago which was all about less lethal methods of protecting/defending yourself. I also talk about some safer ways [...]
7MS #515: Securing Your Family During and After a Disaster – Part 5
Today we continue the series we started a few years ago called Security Your Family During and After a Disaster (the last part in this series was from a few years ago. In today's episode we focus on some additional things you should be thinking about to strengthen the "in case of emergency" document you share with your close friends and family.
7MS #514: Tales of Pentest Pwnage – Part 34
SafePass.me is the only enterprise solution to protect organizations against credential stuffing and password spraying attacks. Visit safepass.me for more details, and tell them 7 Minute Security sent you to get a 10% discount!Welcome to another fun tale of pentest pwnage! This one isn't a telling of one single pentest, but a collection of helpful tips and tricks I've been using on a bunch of [...]
7MS #513: Interview with Christopher Fielder and Jon Crotty of Arctic Wolf
Today we're joined by our friends Christopher Fielder and Jon Crotty from Arctic Wolf to talk about their interesting report on The State of Cybersecurity: 2022 Trends (note: you can get some of the report's key points here without needing to provide an email address). The three of us dig in to talk about some of the report's specific highlights, including:Many orgs are running the [...]
7MS #512: First Impressions of InsightIDR
This episode of 7 Minute Security is sponsored by Datadog. Now offering Cloud Security Posture Management (CPSM), Datadog provides one-click compliance posture. Built on the unified Datadog Agent and platform-wide cloud integrations, you can easily get set up minutes. Try it for yourself today and get a free Datadog t-shirt by going to https://datadog.com/7msToday I'm sharing some first impressions of the Rapid 7 InsightIDR as [...]
7MS #511: How to Succeed in Business Without Really Crying – Part 10
Today we're continuing our series focused on [owning a security consultancy], talking specifically about:How not to give up on warm sales leads, even if they haven't panned out for 5+ years!Some cool Mac tools that help me manage 7MS - such as Craft and OmniFocusA sneak peek at a SIEM vendor that will soon be featured in an episode of Desperately Seeking a Super SIEM [...]