, , ,

Talkin’ About Infosec News – 12/14/2020

Originally aired on December 14, 2020 Articles discussed in this episode: https://www.theverge.com/2020/12/14/22173803/gmail-youtube-google-assistant-docs-down-outage https://www.fireeye.com/blog/threat-research/2020/12/evasive-attacker-leverages-solarwinds-supply-chain-compromises-with-sunburst-backdoor.html https://krebsonsecurity.com/2020/12/u-s-treasury-commerce-depts-hacked-through-solarwinds-compromise/ https://www.darkreading.com/threat-intelligence/fireeye-breach-fallout-yet-to-be-felt/d/d-id/1339680 https://www.solarwinds.com/solutions/orion

Podcast: Play in new window | Download

Subscribe: RSS

Read the entire post here

, , ,

Talkin’ About Infosec News – 12/11/2020

Originally aired on December 11, 2020 Articles discussed in this episode: https://www.nobandwidth.io/ https://www.nytimes.com/2020/12/08/technology/fireeye-hacked-russians.html https://www.picussecurity.com/resource/blog/techniques-tactics-procedures-utilized-by-fireeye-red-team-tools https://blog.netspi.com/cve-2020-17049-kerberos-bronze-bit-attack/ https://www.bleepingcomputer.com/news/security/microsoft-fixes-new-windows-kerberos-security-bug-in-staged-rollout/ https://capricocave.wordpress.com/2020/12/10/docker-botnets/ https://www.trustedsec.com/blog/4-free-easy-wins-that-make-red-teams-harder/ https://arstechnica.com/tech-policy/2020/12/florida-posted-the-password-to-a-key-disaster-system-on-its-website/

Podcast: Play in new window | Download

Subscribe: RSS

Read the entire post here

00500_12072020_JoyridingSILENTTRINITYUpdates

, , ,

Joyriding with SILENTTRINITY – UPDATES

Jordan Drysdale // tl;dr SILENTTRINITY (ST) is one of our favorite C2 tools at BHIS. It’s multiplayer, modern, and multiserver. The code has been revised significantly of late, especially the installation… and the instructions in the original blog I wrote are no longer accurate. https://www.blackhillsinfosec.com/my-first-joyride-with-silenttrinity/ Also, please read the call to arms. Help and support […]

Read the entire post here

00499_12082020_WebcastBurpSuite

, , ,

Webcast: Getting Started with Burp Suite & Webapp Pentesting

Are you responsible for the security of webapps? Are you curious about how penetration testers are able to find vulnerabilities in them? Burp Suite is the preferred tool for many webapp pentesters and bug bounty hunters. It’s easy to get started in Burp, but not all of its features are easy to find or simple […]

Podcast: Play in new window | Download

Subscribe: RSS

Read the entire post here

00498_12032020_Webcast_PLPS2

, ,

Webcast: Pretty Little Python Secrets – Episode 2 – Python Development & Packaging as Beautiful as a Poem

Have you ever tried packaging a Python library/app in order to upload it to the Python Package repository (Pypi)? Not so straight forward is it? There’s a gazillion files you need (setup.py, Manifiest.ini, etc..) which all do different things. On top of that, there’s a decent amount of overhead to configure the necessary settings in […]

Podcast: Play in new window | Download

Subscribe: RSS

Read the entire post here

Azure Sentinel Quick-Deploy with Cyb3rWard0g’s Sentinel To-Go – Let’s Catch Cobalt Strike!

, ,

Azure Sentinel Quick-Deploy with Cyb3rWard0g’s Sentinel To-Go – Let’s Catch Cobalt Strike!

Jordan Drysdale // tl;dr Sentinel is easy! Especially when using Azure Sentinel To-Go. So, let’s do some threat research by deploying Sentinel To-Go and executing a Cobalt Strike beacon. Link: https://github.com/OTRF/Azure-Sentinel2Go Keeping up with Roberto’s (and his brother, and the OTRF contributors) is as monumental a task as his efforts to push threat research forward. […]

Read the entire post here

, , ,

Talkin’ About Infosec News – 11/30/2020

Originally aired on November 30, 2020 Articles discussed in this episode: https://www.computerweekly.com/news/252491324/Surge-in-Ryuk-ransomware-attacks-has-hospitals-on-alert https://www.baltimoresun.com/maryland/baltimore-county/bs-md-co-what-to-know-schools-ransomware-attack-20201130-2j3ws6yffzcrrkfzzf3m43zxma-story.html https://www.darknet.org.uk/2020/10/fuzzilli-javascript-engine-fuzzing-library

Podcast: Play in new window | Download

Subscribe: RSS

Read the entire post here

00494_11232020_AzureSecurityBasics

, , ,

Azure Security Basics: Log Analytics, Security Center, and Sentinel

Jordan Drysdale // TL;DR The problem with a pentester’s perspective on defense, hunting, and security: Lab demographics versus scale.  If it costs $15 bucks per month per server for me to get ATP data, demo its effectiveness, provide tips, tricks, and some basic guidance to the world, this is affordable. Deploying ATP on 5,000 virtual […]

Read the entire post here

« 2 3 4 5 6 »