Welcome! 7 Minute Security podcast episode show notes are here, our “third Thursday” YouTube livestream is here, and our Light Pentest eBook is here.

Blog2025-01-25T12:30:08-06:00

Blog

Search all our posts or browse some of our most recent entries below:

7MS #475: Tales of Internal Network Pentest Pwnage – Part 27

SafePass.me is the only enterprise solution to protect organizations against credential stuffing and password spraying attacks. Visit safepass.me for more details, and tell them 7 Minute Security sent you to get a 10% discount!Yeahhhhhh! Today's another fun tale of pentest pwnage, including:The importance of starting your pentest with an AD account that actually has access to...ya know...stuffThe importance of starting your pentest plugged into a [...]

By |July 8, 2021|Categories: podcast|Tags: |
Read More

7MS #474: Password Cracking in the Cloud – Part 3

Hey friends! Today we're dusting off an old mini-series about password cracking in the cloud (check out part 1 and part 2) and sharing some awesome info on building a monster of a cracking rig in AWS!One reason we haven't talked about password cracking in the cloud in a while is because back in winter of 2019 I built baby's first password cracking. Unfortunately, this [...]

By |June 30, 2021|Categories: podcast|Tags: |
Read More

7MS #473: Interview with Nikhil Mittal

Hey everybody! Today Joe and I sat down with Nikhil Mittal of Pentester Academy and Altered Security to talk about a whole slew of fun security topics:How Nikhil first got involved in Pentester AcademyNikhil's hacker origin storyHow does Nikhil feel about his tools being used by baddies?What security tools/defenses would be good for SMBs to focus on?Active Directory security - is all hope lost?Will AI, [...]

By |June 24, 2021|Categories: podcast|Tags: |
Read More

7MS #472: Interview with Christopher Fielder

Today our good pal Christopher Fielder from Arctic Wolf is back for an interview three-peat! He joins Joe "The Machine" Skeen (a.k.a. Gh0sthax) and I to talk about all things ransomware, including:How the Colonial Pipeline incident may have started from a weak VPN cred with no MFA. Silver lining (?) - they got some of the $ back.Was the federal government's response good enough? What [...]

By |June 16, 2021|Categories: podcast|Tags: |
Read More

7MS #471: Cyber News – Ransomware Should Run Somewhere Edition

Hey everybody, happy June! Our pal Joe is back to cover some great security stories with us, including:Peloton's leaky APISome Colonial Pipeline discussion (story 1, story 2)Amazon Sidewalk doesn't really share your Internet connection with neighbors/strangers. The Hacker News article doesn't do an awesome job of clearing that up either.

By |June 9, 2021|Categories: podcast|Tags: |
Read More

7MS #470: First Impressions of Meraki Networking Gear

Today we're doing something new - a first impressions episode of Meraki networking gear. Note: this is not a sponsored episode, but rather a follow up to episode #460 where I talked about throwing all my UniFi gear into the ocean and replacing it with Meraki gear. At the end of that episode I asked if anybody was interested in a "first impressions" of the [...]

By |June 2, 2021|Categories: podcast|Tags: |
Read More

7MS #469: Interview with Philippe Humeau of CrowdSec

Hey friends! Today we're talking with Philippe Humeau, CEO of CrowdSec, which is "an open-source massively multiplayer firewall able to analyze visitor behavior & provide an adapted response to all kinds of attacks. It also leverages the crowd power to generate a global IP reputation database to protect the user network."I came into this interview not knowing much at all about CrowdSec, so I peppered [...]

By |May 26, 2021|Categories: podcast|Tags: |
Read More

7MS #468: Eating the Security Dog Food – Part 3

This podcast is sponsored by Arctic Wolf, whose Concierge Security teams Monitor, Detect and Respond to Cyber threats 24/7 for thousands of customers around the world. Arctic Wolf. Redefining cybersecurity. Visit Arcticwolf.com/7MS to learn more.Today we continue the series on eating your own security dog food! Specifically, we talk about:Keeping a log and procedure for sanitizing systemsKeeping a log and procedure for provisioning systemsA big [...]

By |May 20, 2021|Categories: podcast|Tags: |
Read More

7MS #467: How to Succeed in Business Without Really Crying – Part 9

SafePass.me is the only enterprise solution to protect organizations against credential stuffing and password spraying attacks. Visit safepass.me for more details, and tell them 7 Minute Security sent you to get a 10% discount!Hey everybody! I stayed in a hotel for the first time in over a year and boy oh boy...I hope I didn't get COVID from the bedsheets!Anyhow, on that journey I thought [...]

By |May 12, 2021|Categories: podcast|Tags: |
Read More

7MS #466: Attacking and Defending Azure AD Cloud (CARTP)

SafePass.me is the only enterprise solution to protect organizations against credential stuffing and password spraying attacks. Visit safepass.me for more details, and tell them 7 Minute Security sent you to get a 10% discount!Welp, I need another security certification like I needed a punch to the retinas, but even after all the fun (and pain) of CRTP I couldn't help but sign up for the [...]

By |May 5, 2021|Categories: podcast|Tags: , |
Read More

7MS #465: Cyber News – The FBI Might Be Getting Into the IR Biz Edition

Hey friends!  Today Joe "The Machine" Skeen (a.k.a. Gh0sthax) and I talk about some of our favorite news stories, including:FBI removes hacker back doorsNSA: 5 security bugs under active nation-state cyberattackUbiquiti is accused of covering up a ‘catastrophic’ data breach — and it’s not denying it.  On a side note, enjoy our podcast about how we lost our love for Ubiquiti a while back: 7MS [...]

By |April 28, 2021|Categories: podcast|Tags: |
Read More

About Us

Services

Resources

© 2025 – 7 Minute Security

Go to Top