How To Blogs

Want to learn HOW TO do something? This is a great place to start!

Click to Enable Content

Sally Vandeven // Evading anti-virus scanners has become a bit of a sport around BHIS.  When we do C2 testing for our customers we start with a host on the internal network and create a reverse connection out to our C2 server.  We then proceed to send various types of data in and out to […]

Read the entire post here

00381_Google_Purge_p2_03272019

How to Purge Google and Start Over – Part 2

Mike Felch// How to Purge Google and Start Over – Part 1 Brief Recap In part 1, we discussed a red team engagement that went south when the Google SOC joined forces with the SOC of a customer leading to the dismantling of all our compromised accounts, throw-away accounts, and even my work account. My […]

Read the entire post here

beau and mike RDP

PODCAST: RDP Logging Bypass and Azure Active Directory Recon

For this podcast we cover a couple of different topics. First, we talk about how to password spray in a non-attributable sort of way. Beau found a way to obfuscate what RDP logs record with launching password spraying attacks. This has implications for UBEA. It is… kind of cool. Second, we cover how to do […]

Podcast: Play in new window | Download

Subscribe: RSS

Read the entire post here

Talkin’ About Infosec News – 12/14/2020

Originally aired on December 14, 2020 Articles discussed in this episode: https://www.theverge.com/2020/12/14/22173803/gmail-youtube-google-assistant-docs-down-outage https://www.fireeye.com/blog/threat-research/2020/12/evasive-attacker-leverages-solarwinds-supply-chain-compromises-with-sunburst-backdoor.html https://krebsonsecurity.com/2020/12/u-s-treasury-commerce-depts-hacked-through-solarwinds-compromise/ https://www.darkreading.com/threat-intelligence/fireeye-breach-fallout-yet-to-be-felt/d/d-id/1339680 https://www.solarwinds.com/solutions/orion

Podcast: Play in new window | Download

Subscribe: RSS

Read the entire post here

k and j 1

WEBCAST: Attack-n-Crack Wi-Fi

Jordan Drysdale & Kent Ickler // Jordan and Kent demonstrate why there is only ONE correct way to configure your wireless networks. They also talk about the use of a web service called Wigle to profile and identify your target wireless networks, wireless hash crack theory, pre-computation of a hash file for a target SSID […]

Read the entire post here

tipping_point

GNURadio Can Make You Hear Laurel & Yanny

Paul Clark* // Feeling uncomfortably productive today? I’ve got a remedy for that, involving internet memes and signal processing. Come and waste a few minutes of your day with Laurel, Yanny, and GNURadio. It’s been going on for a couple of days, so you’re probably already wearying of the interpretive controversy centered around the audio […]

Read the entire post here

image04

Bugging Microsoft Files: Part 3 – Clearing Metadata

Ethan Robish // In my last two posts I showed how to insert tracking bugs in both .docx (Part 1) and .xlsx files (Part 2).  But don’t let all that effort go to waste by leaving metadata in that could lead back to you. When you save a file in Microsoft Office some metadata about you is […]

Read the entire post here

00419_11262019_WEBCAST_GroupPoliciesKillKillChains

Webcast: Group Policies That Kill Kill Chains

On this webcast, we’ll guide you through an iterative process of building and deploying effective and practical Group Policy Objects (GPOs) that increase security posture. Slides for this webcast can be found here: https://www.blackhillsinfosec.com/wp-content/uploads/2020/09/SLIDES_GroupPoliciesThatKillKillChains.pdf 0:45 Introducing what a kill chain is and general background you need for this webcast 15:53 Getting into group policies, best […]

Read the entire post here

Talkin’ About Infosec News – 6/1/2021

Originally Aired on June 1, 2021 Articles discussed in this episode: 00:00 – PreShow Banter™ — Fishing Attacks 02:40 – Story 1: https://m1racles.com/ 05:33 – Story 2: https://arstechnica.com/gadgets/2021/05/vulnerability-in-vmware-product-has-severity-rating-of-9-8-out-of-10/ 11:26 – Story 3: https://www.securityweek.com/nuclear-flash-cards-us-secrets-exposed-learning-apps 15:29 – Story 4: https://www.darkreading.com/risk/cyber-insurance-firms-start-tapping-out-as-ransomware-continues-to-rise/d/d-id/1341109 23:44 – Story 5: https://www.zdnet.com/article/various-japanese-government-entities-had-data-stolen-in-cyber-attack-report/ 26:26 – Story 6: https://www.microsoft.com/security/blog/2021/05/27/new-sophisticated-email-based-attack-from-nobelium/

Podcast: Play in new window | Download

Subscribe: RSS

Read the entire post here

00539_06012021_WebcastGettingStartedPentestingCloud

, , , ,

Webcast: Getting Started in Pentesting The Cloud: Azure

In this Black Hills Information Security (BHIS) webcast, you will learn tools and techniques for performing penetration tests against Microsoft Azure environments. Increasingly, more organizations are migrating resources to being hosted in the cloud. With this comes a greater potential for misconfiguration if there isn’t a solid understanding of the attack surface. While there are […]

Podcast: Play in new window | Download

Subscribe: RSS

Read the entire post here

00537_05252021_IsThisThingOn

, , , ,

Is This Thing On?

How to make sure your antivirus is working without any malware  Michael Allen // Recently, a customer asked me if there was a way they could generate alerts from the new antivirus product they deployed without executing any actual malware on the system they were testing it on. The computer they wanted to test was an especially sensitive and business-critical system, so it was important that they perform […]

Read the entire post here

00532_05042021_UsingSDRBuildTrunkTracker

, , ,

Using SDR to Build a Trunk Tracker – Police, Fire, and EMS Scanner

Ray Felch // Introduction  Recently, I came across an interesting article on using software-defined radio (SDR) to create a Police, Fire, EMS, and Public Safety systems scanner. Viewing a few of these Trunk tracking scanners on Amazon, I quickly discovered that they are not cheap at all. You can spend several hundred dollars on a Trunked Radio tracking scanner; however, we […]

Read the entire post here

00529_04302021_InformationFromThinAir

, , ,

Information From Thin Air: Using SDR to Extract DTMF from Radio Waves

Ray Felch // Disclaimer  When using an FM transmitter, do not modify the intended operation of the module by amplifying the transmitted signal. Also, be sure that attaching an FM high gain antenna will NOT be transmitting outside the legal range for RF emissions. When transmitting any data, be sure you do not accidentally break any laws by illegally […]

Read the entire post here

, , , , , ,

Backdoors & Breaches LIVE – 3/10/2021

The Livestream of our first Backdoors & Breaches (B&B) session using our new Tabletop Simulator (TTS) version of the game was a success! If you have STEAM / TABLETOP SIMULATOR / BACKDOORS & BREACHES WORKSHOP, you can play using the same version of the game. 11:05​ – Backdoors & Breaches Session Begins! Our good friend […]

Podcast: Play in new window | Download

Subscribe: RSS

Read the entire post here

1 2 3 4 »