Blog
Search all our posts or browse some of our most recent entries below:
7MS #504: Monitoring All Your Cloud Thingies with UptimeRobot
Hey friends, today we're talking about how to monitor all your cloud thingies (Web servers, mail servers, etc.) with UptimeRobot. And I'm sharing some fun tips to monitor your internal thingies as well - without the use of any extra agent software.A few tips:If you have a port like 80 or 443 that you have firewalled off to not allow any ol' host to hit, [...]
7MS #503: First Impressions of Brute Ratel
Today's episode is all about Brute Ratel, a command and control center that is super cool, quick to setup, and much easier to use (IMHO) than Cobalt Strike. I also talk specifically about some of my favorite command line features, how slick and simple lateral movement is, and the "killer feature" that makes me giggle like the bad guy from Sonic the Hedgehog.In the tangent [...]
7MS #502: Building a Pentest Lab in Azure
Happy new year friends! Today I share the good, bad, ugly, and BROKEN things I've come across while migrating our Light Pentest LITE training lab from on-prem VMware ESXi to Azure. It has been a fun and frustrating process, but my hope is that some of the tips in today's episode will save you some time/headaches/money should you setup a pentesting training camp in the [...]
7MS #501: Tales of Pentest Pwnage – Part 31
Today's episode is brought to us by Manscaped. Get 20% off your order + free shipping with the code 7MS at Manscaped.com Today we're closing down 2021 with a tale of pentest pwnage - this time with a path to DA I had never had a chance to abuse before: Active Directory Certificate Services! For the full gory details on this attack path, see the [...]
7MS #500: Interview with John Strand
HAPPY 500 EPISODES, FRIENDS! That's right, 7MS turned 5-0-0 today, and so we asked John Strand of Black Hills Information Security to join us and talk about all things security, including the John/BHIS superhero origin story, the future of pentesting, the (perceived) cybersecurity talent shortage, how to get started with good security practices in your organization, and more! P.S. check out John's first visit to [...]
7MS #499: Desperately Seeking a Super SIEM for SMBs – Part 6
Today we have some cool updates on this SIEM-focused series we've been doing for a while. Specifically, I want to share that one of these solutions can now detect three early (and important!) warning signs that bad things are happening in your environment:ASREPRoastingWDigest flag getting flipped (reg add HKLM\SYSTEM\CurrentControlSet\Control\SecurityProviders\WDigest /v UseLogonCredential /t REG_DWORD /d 1)Restricted admin mode getting enabled (reg add HKLM\System\CurrentControlSet\Control\Lsa /t REG_DWORD /v [...]
7MS #498: Securing Your Mental Health – Part 2
Hi everybody, today we're continuing a series we started way back in June called Securing Your Mental Health. Today I talk about some easy and relatively cheap things I'm doing to try and shutdown negative thoughts, punch imposter syndrome in the face, and be an overall happier and more positive person.
7MS #497: The Stress and Satisfaction of Offering Live Security Training
Hey friends, today I'm giving you a peek behind the curtain of our Light Pentest LITE training to talk about the software/hardware we use to make it sing, the growing pains - and OMG(!) moments - that forced us to build in more infrastructure redundancy, and the cool (and expensive!) cloud options we're considering to offer a self-paced version of the course.
7MS #496: Tales of Pentest Pwnage – Part 30
Today's episode is brought to us by Manscaped. Get 20% off your order + free shipping with the code 7MS at Manscaped.comToday's tale of pentesting has a bunch of tips to help you maximize your pwnage, including:The new Responder DHCP poisoning moduleAll the cool bells and whistles from CrackMapExec which now include new lsass-dumping modules!Speaking of lsass dumping, here's a new trick that works if [...]
7MS #495: Desperately Seeking a Super SIEM for SMBs – Part 5
This podcast is sponsored by Arctic Wolf, whose Concierge Security teams Monitor, Detect and Respond to Cyber threats 24/7 for thousands of customers around the world. Arctic Wolf. Redefining cybersecurity. Visit Arcticwolf.com/7MS to learn more.Today we continue our SIEM/SOC evaluation series with a closer look at one particular managed solution and how it fared (very well) against a very hostile environment: the Light Pentest LITE [...]
7MS #494: Interview with Josh Burnham of Liquid Web
Today we chat with Josh Burnham, Security Operations Manager at Liquid Web. As someone who helps support and secure a hosted environment, Josh sleeps with one eye open :-). We talked about:How security in a hosting environment has changed from "back in the day" to todayTips for running a successful bug bounty programWhy your organization might want to utilize a security.txt fileTips on dealing with [...]