Want to learn HOW TO do something? This is a great place to start!
Advanced Msfvenom Payload Generation
Joff Thyer // It has been known for some time that an executable payload generated with msfvenom can leverage an alternative template EXE file, and be encoded to better evade endpoint defenses. Having said that, what is the standard process for producing an EXE format without using an alternative template file? If, like many […]
GNU Screen Quick Reference
Brian King // I use GNU Screen mainly to prevent processes from dying when I disconnect from an SSH session, but GNU Screen can do a whole lot more than that – the man page is about 3700 lines long. Clearly if I’m using it only to keep a session alive, I’m not using the bulk of […]
Five Signs Your Organization Is Failing at Security
@1iJax aka The Security Viking// Just when you think the drum has been beaten loudly enough for long enough, a quick survey of organizations across the spectrum will find many companies still just “don’t get it”. No, this is not an exhaustive list, there is only so much we can fit on one post. If […]
Many Thanks to BHIS
Kali Regenold // My time here at Black Hills Information Security has been short so far, but I believe it’s been the most important four months of my computer science and security career. I started at the end of last semester, so sometime in April. At the time I thought I was way in over […]
BHIS Webcast: Tracking Attackers. Why Attribution Matters and How To Do It.
In this BHIS webcast, we cover some new techniques and tactics on how to track attackers via various honey tokens. We cover how to track with Word Web Bugs in ADHD and cover the awesome toolkit from Thinkst. We also cover some of the legal ramifications involved in doing this. Download slides: https://www.activecountermeasures.com/presentations/ I am covering this […]
Collecting and Crafting User Information from LinkedIn
Justin Angel // Penetration testing and red team engagements often require operators to collect user information from various sources that can then be translated into inputs to support social engineering and password attacks. LinkedIn is obviously a prime source for this type of information since users can associate themselves with a particular company. Assuming we […]
Are you Snoopable?!
Rick Wisser // All right, you’ve taken all the precautions related to your network. You have lockout controls in place, you use awesome password policies (20 characters with uppercase, lowercase, special characters, and wingdings…. ) Two factor is everywhere, web apps are locked down, cross-site-scripting and SQL injection are not viable. You are feeling good […]
Data Mining & Privacy: How Anonymous Are You Really?
Sam Carroll // When I started at BHIS I was surprised at the sensitivity of personal data, such as my birthday. I was soon reminded of a data mining class I took last year where Dr. Karlsson (South Dakota School of Mines & Technology) started with an ethics portion. Specifically the ethics he warned us about was […]
PODCAST: From Active Countermeasures – Attack Tactics 4
Join John Strand as he continues his Attack Tactic series this time with the defense ideas for the attacks mentioned in episode 3 (see more here) To see the entire webcast visit the Active Countermeasures YouTube channel Blogs mentioned in this episode: Mike Felch’s Stealing 2FA Tokens on Red Teams with CredSniper Carrie Roberts’ Gathering […]
Podcast: Play in new window | Download
