Black Hills Information Security, Inc.
RSS
  • All Services
    • Penetration Testing
    • Continuous Penetration Testing
    • Web Application Testing
    • ActiveSOC
    • Fusion PenTest
    • AI Security Assessments
    • Incident Response
    • Blue Team Services
    • Blockchain Security
    • High-Profile Risk Assessments
    • Complete Service Guide
  • Contact Us
    • Contact Us
    • Email Sign-Up
  • About Us
    • Security Consultants
    • Admin Team
    • ActiveSOC Team
    • Antisyphon Training
    • BHIS Tribe of Companies
  • Free Resources
    • Blogs
    • Free Cybersecurity Tools
    • Free Cybersecurity Webcasts
    • Podcasts
    • RITA
  • Training
    • BHIS & Antisyphon Training
    • WWHF Conference
  • Community
    • Discord
    • LinkedIn
    • YouTube
    • Bluesky
    • Twitter/X
    • Upcoming Events
  • Fun Stuff
    • Backdoors & Breaches
    • Merch, Zines & More
    • PROMPT# Zine
    • REKCAH
    • Books
Linux Persistence For Pentesters

Ben Bowman, Linux, Red Team, Red Team Tools

The “P” in PAM is for Persistence: Linux Persistence Technique

Learn about a pentesting tool using the Pluggable Authentication Module for privilege escalation, lateral movement, and persistence in Linux.

Read the entire post here
malanalysis_header

Informational, InfoSec 101 Green Book, Infosec for Beginners, InfoSec Survival Guide, John Hammond, Malware, Malware Analysis

Malware Analysis: How to Analyze and Understand Malware

Malware analysis is an amazing field that can be interesting, fun, and useful for your cybersecurity career. If you’re wondering WHY anyone would want to dig into malware, it’s all for a better understanding of cybersecurity!

Read the entire post here
OSINT_header

Guest Author, How-To, Informational, InfoSec 101 Infosec for Beginners, InfoSec Survival Guide, Leonardo Núñez, OSINT

OSINT: How to Find, Use, and Control Open-Source Intelligence

OSINT stands for open-source intelligence, and it refers to all publicly available information on the open internet which has been obtained without any special requirements (paywalls, invitations, etc.).

Read the entire post here
homelab_header

Fun & Games, General InfoSec Tips & Tricks, Guest Author, How-To, Informational, InfoSec 101 Green Book, Infosec for Beginners, InfoSec Survival Guide

What to Do with Your First Home Lab

Having assembled fundamental lab components, you now get to play! However, the ocean of potential projects can be intimidating. Where does one even start?

Read the entire post here
deadwood_header

Active SOC, Blue Team, Informational BHISinterviews, Melissa Lauro

When the SOC Goes to Deadwood: A Night to Remember 

Hear a tale about the time the BHIS SOC team conducted a 14-hour overnight incident response… from the Wild West Hackin’ Fest conference in Deadwood, South Dakota.

Read the entire post here
Social Engineering and Microsoft SSPR

How-To, InfoSec 101, John Malone, Red Team, Social Engineering

Social Engineering and Microsoft SSPR: The Road to Pwnage is Paved with Good Intentions 

This scenario simultaneously tests identity confirmation tooling (SSPR, MFA, Conditional Access), how users act under pressure, and the organization’s ability to detect and follow-up on social engineering attacks.

Read the entire post here
cyber threats_header

Guest Author, Informational, InfoSec 101 Green Book, Infosec for Beginners, InfoSec Survival Guide

Common Cyber Threats

In today’s interconnected digital world, information security has become a critical concern for individuals, businesses, and governments alike. Cyber threats, which encompass a wide range of malicious activities targeting information systems, pose significant risks to the confidentiality, integrity, and availability of data.

Read the entire post here
pentest_header

General InfoSec Tips & Tricks, Informational Melisa Wachs, penetration testing

Finding the Right Penetration Testing Company

This blog is for anyone who is interested in finding a good penetration testing company.

Read the entire post here
deceptiveaud_header (2)

Blue Team Tools, How-To, Informational, Intern Active Directory, automation, Honey Pots

Deceptive-Auditing: An Active Directory Honeypots Tool

Deceptive-Auditing is a tool that deploys Active Directory honeypots and automatically enables auditing for those honeypots.

Read the entire post here
«‹ 2 3 4 5›»

Looking For Something?

Browse by category

Recent Posts

  • kape101_header (1)KAPE 101: A Kroll Artifact Parser and Extractor Cheatsheet
    Spend time performing forensic analysis on the Windows
  • goldilocks_header (1)Finding the “Goldilocks” Zone: A Practical Approach to Alert Triage
    We're all petrified about missing a critical event or
  • webapp_headerFinding and Addressing Vulnerable and Outdated Web Application Components
    Vulnerable and outdated software components are one of

Browse by topic

Active Directory ADHD AI anti-virus Attack Tactics AV Beau Bullock BHIS Blue Team C2 Carrie Roberts cloud Cyber Deception hacking infosec Infosec for Beginners InfoSec Survival Guide Joff Thyer john strand Jordan Drysdale Kent Ickler Kerberos Linux MailSniper Malware Microsoft Nessus Nmap passwords password spraying pen-testing penetration testing pentest Pentesting phishing PowerShell Python Red Team red teaming RITA Sysmon tools webcast webcasts Windows

Archives

Back to top
Black Hills Information Security, Inc.

890 Lazelle Street, Sturgis, SD 57785-1611 | 701-484-BHIS (2447)
© 2008


About Us | BHIS Tribe of Companies | Privacy Policy | Contact

Links
  • YouTube
  • LinkedIn
  • Bluesky
  • Discord
  • X
  • iTunes
Search the site