Blog
Search all our posts or browse some of our most recent entries below:
7MS #615: Tales of Pentest Pwnage – Part 54
Hey friends, sorry I'm so late with this (er, last) week's episode but I'm back! Today is more of a prep for tales of pentest pwnage, but topics covered include: Make sure when you're snafflin' that you check for encrypted/obfuscated logins and login strings - it might not be too tough to decrypt them! On the defensive side, I've found myself getting *blocked* doing things [...]
7MS #614: How to Succeed in Business Without Really Crying – Part 16
Today we're talkin' business again - specifically as it relates to: How much fun I had attending and speaking at Netwrix Connect Being a sales guy in conference situations without being an annoying sales guy in conference situations A recap of the talk I co-presented about high profile breaches and lessons we can learn from them
7MS #613: Tales of Pentest Pwnage – Part 53
Today's tale of pentest covers: Farming for credentials (don't forget to understand trusted zones to make this happen properly!) Snaffling for juice file shares Stealing Kerberos tickets with Rubeus
7MS #612: Pentestatonix – Part 2
Hello friends, we're still deep in the podcast trenches this quarter and wanted to share some nuggets of cool stuff we've been learning along the way: Snaffler - pairs nicely with PowerHuntShares to find juicy tidbits within file/folder shares Group3r - helps you find interesting and potentially abusable Group Policy Object configurations Farmer - totally awesome toolkit for dropping tricky files on shares that will [...]
7MS #611: Pentestatonix
Hey friends, sorry for the late episode but I've been deep in the trenches of pentest adventures. I'll do a more formal tale of pentest pwnage when I come up for air, but for now I wanted to share some tips I've picked up from recent engagements: GraphRunner - awesome PowerShell toolkit for interacting with Microsoft Graph API. From a pentesting perspective, it may [...]
7MS #610: DIY Pentest Dropbox Tips – Part 9
Hey friends, today we cover a funstrating (that's fun + frustrating) issue we had with our DIY pentest dropboxes. TLDL: The preseed file got jacked because I had a bad Kali metapackage in it. While I was tinkering around with preseed files, I decided it would be more efficient to have the Kali ISO call that preseed file directly over HTTP (rather than make a [...]
7MS #609: First Impressions of Sysreptor
Hey friends, today is a first impressions episode about Sysreptor, which according to their GitHub page, is a fully customisable, offensive security reporting solution designed for pentesters, red teamers and other security-related people alike. It is easy to stand up with Docker, has built-in MFA and a great hybrid WYSIWYG/code editor. The only scary part? There is no export to Word (insert suspenseful music [...]
7MS #608: New Tool Release – EvilFortiAuthenticator
Hey friends, today our pal Hackernovice joins us for a tool (actually two tools!) release party: EvilFortiAuthenticator - it's like a regular FortiAuthenticator, but evil. This tool allows you to capture the FortiAuthenticator API and subsequently steal the entire device's config, subsequently allowing you to restore the config to a second server and potentially steal cleartext Active Directory creds and SMTP accounts! We talk about BulletsPassView [...]
7MS #607: How to Succeed in Business Without Really Crying – Part 15
Today we talk about some business-y things like: A *pre* first impressions opinion on Sysreptor Why I'm not worried about AI replacing manual pentesting (yet) My struggle with going "full CEO" vs. staying in the weeds and working on hands-on security projects
7MS #606: Hacking OWASP Juice Shop (2024 edition)
Today our pals Bjorn Kimminich from OWASP and Paul from Project7 and TheUnstoppables.ai join us as we kick off a series all about hacking the OWASP Juice Shop, which is "probably the most modern and sophisticated insecure web application!" We got a few wins on the Juice Shop score board today:Found the score boardBullied the chatbotFired a DOM XSSLocated a confidential documentGave the Juice Shop [...]
7MS #605: Navigating the Demands of Tech Leadership with Amanda Berlin of Blumira
Today our friend Amanda Berlin, Lead Incident Detection Engineer at Blumira, joins us to talk about being more mentally healthy in 2024!P.S. - did you miss Amanda's past visits to the program? Then check out episode 518, 536 and 588.Be sure to check out the next edition of Amanda's Defensive Security Handbook when it comes out in later January, 2024!