Blog
Search all our posts or browse some of our most recent entries below:
7MS #528: Securing Your Family During and After a Disaster – Part 6
Today's episode is sponsored by Blumira!In today's episode, I try to get us thinking about our extended family's emergency/DR plan. Why? Because I recently had a close family member suffer a health scare, and it brought to light some questions we didn't have all the answers for:Do we have creds to log onto his computer?How about his email accounts?Do we have usernames/passwords for retirement accounts, [...]
7MS #527: First Impressions of Purple Knight
SafePass.me is the only enterprise solution to protect organizations against credential stuffing and password spraying attacks. Visit safepass.me for more details, and tell them 7 Minute Security sent you to get a 10% discount!In today's episode we talk about Purple Knight, a free tool to help assess your organization's Active Directory security. I stuck Purple Knight in our Light Pentest LITE pentest training lab and [...]
7MS #526: Tales of Pentest Pwnage – Part 37
This podcast is sponsored by Arctic Wolf, whose Concierge Security teams Monitor, Detect and Respond to Cyber threats 24/7 for thousands of customers around the world. Arctic Wolf. Redefining cybersecurity. Visit Arcticwolf.com/7MS to learn more.Today's another fun tale of pentest pwnage - specifically focused on cracking a hash type I'd never paid much attention to before: cached domain credentials. I also learned that you can [...]
7MS #525: First Impressions of InsightIDR – Part 2
Today we're sharing an updates to episode #512 where we ran Rapid7's InsightIDR through a bunch of attacks:Active Directory enumeration via SharpHoundPassword spraying through RubeusKerberoasting and ASREPRoasting via RubeusNetwork protocol poisoning with Inveigh. Looking for a free way to detect protocol poisoning? Check out CanaryPi.Hash dumping using Impacket. I also talk about an interesting Twitter thread that discusses the detection of hash dumping.Pass-the-hash attacks with [...]
7MS #524: How to Update VMWare ESXi From the Command Line
This podcast is sponsored by Arctic Wolf, whose Concierge Security teams Monitor, Detect and Respond to Cyber threats 24/7 for thousands of customers around the world. Arctic Wolf. Redefining cybersecurity. Visit Arcticwolf.com/7MS to learn more.I'm extra psyched today, because today's episode (which is all about updating your VMWare ESXi version via command line) is complemented by video:Shortly after recording this video, I found this awesome [...]
7MS #523: Local Administrator Password Solution – RELOADED!
SafePass.me is the only enterprise solution to protect organizations against credential stuffing and password spraying attacks. Visit safepass.me for more details, and tell them 7 Minute Security sent you to get a 10% discount!Well friends, it has been a while since we talked about Microsoft's awesome Local Administrator Password Solution - specifically, the last time was way back in 2017!Lately I've been training some companies [...]
7MS #522: Pwning Wifi PSKs and PMKIDs with Bettercap – Part 2
Hey friends, a while back in episode #505 we talked about pwning wifi PSKs and PMKIDs with Bettercap. Today I'm revisiting that with even some more fun command line kung fu to help you zero in on just the networks you're interested in and filter out a bunch of noisy events from bettercap in the process: # In ESXI, shut down the host, then add a new USB device and choose [...]
7MS #521: Tales of Pentest Pwnage – Part 36
This podcast is sponsored by Arctic Wolf, whose Concierge Security teams Monitor, Detect and Respond to Cyber threats 24/7 for thousands of customers around the world. Arctic Wolf. Redefining cybersecurity. Visit Arcticwolf.com/7MS to learn more. Hey friends! Today's another swell tale of pentest pwnage, and it's probably my favorite one yet (again)! This tale involves resource based constrained delegation, which is just jolly good evil [...]
7MS #520: How to Succeed in Business Without Really Crying – Part 11
This podcast is sponsored by Arctic Wolf, whose Concierge Security teams Monitor, Detect and Respond to Cyber threats 24/7 for thousands of customers around the world. Arctic Wolf. Redefining cybersecurity. Visit Arcticwolf.com/7MS to learn more.Hey friends, today we're giving another peek behind the curtain of what it's like to run a cybersecurity consultancy. Topics include:Setting the right communication cadence - and communication channels - with [...]
7MS #519: Tales of Pentest Pwnage – Part 35
Hey friends, it's another fun tale of pentest pwnage today! This one talks about cool things you can do when you have full rights over an OU in Active Directory. Important links to review:BloodHound edgesDACL Trouble: Generic All on OUsAD prep bug in Windows Server 2016
7MS #518: Interview with Amanda Berlin of Blumira
Today we're pumped to share a featured interview with Amanda Berlin, Lead Incident Detection Engineer at Blumira. You might already be familiar with Amanda's awesome Defensive Security Handbook or fine work with Mental Health Hackers. We polled our Slack friends and structured this interview as an AAA (Ask Amanda Anything). That resulted in a really fun chat that covered many things technical and not technical! [...]