Want to learn HOW TO do something? This is a great place to start!
PODCAST: BHIS Sorta Top Used Tools of 2018
In this webcast we cover some of the core tools we use all the time at Black Hills Information Security. However, there’s a twist. We don’t talk about Nessus, Nmap, or Metasploit. Why? Because there are a ton of new (and older) tools we use that fall outside of the standard tools you see in […]
Podcast: Play in new window | Download
Subscribe: RSS
WEBCAST: Wrangling Internal Network Vulnerabilities
Jordan Drysdale & Kent Ickler // In this webcast, we demonstrate some standard methodologies utilized during an internal network review. We also discuss various tools used to test network defenses and their capabilities. Solutions to common vulnerabilities are proposed in most situations. Slides for this webcast are here: https://www.dropbox.com/s/2cl7axn0zi9lbm7/WEBCAST_071117_slides_WranglingInternalNetworkVulnerabilities.pdf?dl=0
XML External Entity – Beyond /etc/passwd (For Fun & Profit)
Robert Schwass*// Last week I was asked twice in one day if I knew what XML External Entity (XXE) Vulnerabilities were. Maybe they are making a comeback in mainstream security buzz or sales jargon, I have no idea. (Often buzz-words propagated by the media or sales engineers become the driving factor for many of the […]
Analyzing ARP to Discover & Exploit Stale Network Address Configurations
Justin Angel// Introduction In penetration testing, ARP is most commonly discussed in terms of poisoning attacks where an attacker achieves a man-in-the-middle (MITM) position between victim nodes by contaminating the ARP cache tables of neighboring hosts. While initially inspired by this technique and the desire to derive a means of passively obtaining a list of […]
The Non-Attrib Starterpack!
Jordan Drysdale // Let’s start this post at Walmart. Yes, the visit may be attributable against the purchaser via security camera footage retrieved by warrant, so hand your wife/husband/confidant/whomever a stack of untraceable cash. The first thing to snag is a new burner phone. This one seems acceptable for our purposes: Wait though, did we […]
Performing a Physical Pentest? Bring This!
Jordan Drysdale// Physical Pentest Upcoming? Bring a Badgy. While badge reproduction may not be the intended use of this product, if you are a physical tester and you don’t own one, you need to get one. https://www.badgy.com/products/badgy-200.html While stuffing this thing in my suitcase was the obvious choice, maybe in the future I’ll avoid the […]
Webcast: Modern Webapp Pentesting: How to Attack a JWT
So much information about testing webapps for security problems is old. Don’t get me wrong, the old stuff still works way more often than we’d like, but there’s more to webapp vulnerabilities than cross-site scripting and SQL injection. Take JWTs – JSON Web Tokens – for example. These are base64 encoded tokens that sometimes get […]
Podcast: Play in new window | Download
Subscribe: RSS
Webcast: Getting Started with Burp Suite & Webapp Pentesting
Are you responsible for the security of webapps? Are you curious about how penetration testers are able to find vulnerabilities in them? Burp Suite is the preferred tool for many webapp pentesters and bug bounty hunters. It’s easy to get started in Burp, but not all of its features are easy to find or simple […]
Podcast: Play in new window | Download
Subscribe: RSS
Webcast: Getting Started in Blockchain Security and Smart Contract Auditing
Why is blockchain security important? Blockchain usage has exploded since the Bitcoin whitepaper was first published in 2008. Many applications rely on this technology for increased trust and privacy, where they would otherwise be absent from a centralized system. The ecosystem surrounding blockchain technology is large, complex, and has many moving pieces. Exchanges exist where […]
Podcast: Play in new window | Download
Subscribe: RSS
