Blog
Search all our posts or browse some of our most recent entries below:
7MS #689: Pwning Ninja Hacker Academy – Part 2
Hello friends! Today your friend and mine, Joe "The Machine" Skeen joins me as we keep chipping away at pwning Ninja Hacker Academy! Today's pwnage includes: "Upgrading" our Sliver C2 connection to a full system shell using PrintSpoofer! Abusing nanodump to do an lsass minidump....and find our first cred. Analyzing BloodHound data to find (and own) excessive permissions against Active Directory objects
7MS #688: Building a Pentest Training Course Is Fun and Frustrating
Today I talk about a subject I love while also driving me crazy at the same time: building a pentest training course! Specifically, I dissect a fun/frustrating GPO attack that I need to build very carefully so that every student can pwn it while also not breaking the domain for everybody else. I also talk about how three different flavors of AI failed me in [...]
7MS #687: A Peek into the 7MS Mail Bag – Part 5
Hi friends, we're doing something today we haven't done in a hot minute: take a dip into the 7MinSec mail bag! Today we cover these questions: If I'm starting a solo business venture as a security consultancy, is it a good idea to join forces with other solo security business owners and form a consortium of sorts? Have you ever had anything go catastrophically wrong [...]
7MS #686: Our New Pentest Training Course is Almost Ready
Oh man, I'm so excited I can hardly sleep. Our new three-day (4 hours per day) training is getting closer to general release. I talk about the good/bad/ugly of putting together an attack-sensitive lab that students can abuse (but hopefully not break!), and the technical/curriculum-writing challenges that go along with it.
7MS #685: The Time My Neighbor Almost Got Scammed Out of $13K
Today's kind of a "story time with your friend Brian" episode: a tale of how my neighbor almost got scammed out of $13k. The story has a lot of red flags we can all keep in mind to keep ourselves (as well as kids/friends/parents/etc.) safer from these types of shenanigans. In the personal/tangent department I also share how awesome my music gig from last week [...]
7MS #684: Pwning Ninja Hacker Academy
Hey friends, today we start pwning Ninja Hacker Academy - cool CTF-style lab that has you start with no cred and try to conquer domain admin on two domains!
7MS #683: What I’m Working on This Week – Part 4
This week I'm working on a mixed bag of fun security and marketing things: A pentest I'm stuck on My latest lab CTF obsession: Ninja Hacker Academy A cool "about 7MinSec" marketing video that was recorded in a pro studio!
7MS #682: Securing Your Family During and After a Disaster – Part 7
Today's episode is a downer! We talk about things you might want to have buttoned up for when you are eventually not alive anymore: Living will Buried vs. cremated? Funeral plans Funeral PHOTOS? I also talk about how my dad broke his ribs while trying to break a chimpmunk, and how a freak 4-wheeler accident also had my ribs in agony.
7MS #681: Pentesting GOAD – Part 3
Today Joe "The Machine" Skeen and I pwn the third and final realm in the world of GOAD (Game of Active Directory): essos.local! The way we go about it is to do a WinRM connection to our previously-pwned Kingslanding domain, coerce authentication out of MEEREEN (the DC for essos.local) and then capture/abuse the TGT with Rubeus! Enjoy.
7MS #680: Tips for a Better Purple Team Experience
Today I share some tips on creating a better purple team experience for your customers, including: Setting up communication channels and cadence Giving a heads-up on highs/criticals during testing (not waiting until report time) Where appropriate, record videos of attacks to give them more context
7MS #679: Tales of Pentest Pwnage – Part 73
In today's tale of pentest pwnage I talk about a cool ADCS ESC3 attack - which I also did live on this week's Tuesday TOOLSday. I also talk about Exegol's licensing plans (and how it might break your pentest deployments if you use ProxmoxRox).