Black Hills Information Security
Penetration testing for Fortune 50 companies since 2008.
  • About Us
    • Testers
    • Admin
    • Partners
    • Interns
  • Contact
    • Contact Us
    • Email Sign-Up
  • Services
    • Penetration Testing
    • Active SOC
    • Blue Team Services
    • Hunt Team (HTOC)
    • Cyber Range
  • Projects/Tools
    • All Tools
    • RITA
    • Backdoors & Breaches
    • Books
  • Learn
    • Blog
    • Webcasts
    • Podcasts
    • Training
Modifying Metasploit x64 template for AV evasion

External/Internal, Red Team AV, AV evasion, modifying measpoilt, shellcode

Modifying Metasploit x64 template for AV evasion

Joff Thyer //   When performing a penetration of test of organizations with Windows desktops, many testers will now resort to using tools like Veil’s Powershell Empire in order to inject shellcode directly into memory.    Without doubt, this is a fantastic technique as it avoids writing to disk and running headlong into a direct hit […]

Read the entire post here

Service Detection – Tomcat Manager, From “Info” to “Ouch”

Red Team, Web App Info2Ouch, Nessus, Vulnerabilities

Service Detection – Tomcat Manager, From “Info” to “Ouch”

Carrie Roberts // Continuing on the thread of highlighting Nessus vulnerability scan results that turned out to be more severe than reported . . . I always review the “Info” level “Service Detection” finding reported by Nessus, particularly any web servers that it lists because there are often blatant security issues hidden in there. This is as […]

Read the entire post here

Asterisk SIP Server, From “Info” to “Ouch”

External/Internal, Password Spray, Red Team Info2Ouch, Nessus, Vulnerabilities

Asterisk SIP Server, From “Info” to “Ouch”

Carrie Roberts // I learned some new stuff that will make me pay attention to “Asterisk Detection” Nessus informational findings in the future . . . On an external network scan, Nessus reported two hosts running Asterisk SIP services as an informational finding.  When entering the IP address in a browser, only a blank page was […]

Read the entire post here

InfoSec 301 Blue Team, Danger Will Robinson, MS15-034, Patch, Purple Team, Red Team, Remote Code Execution

Waiting Is the Hardest Part: A Purple Team’s Take on MS15-034

Mick Douglas // Current Status: – MS15-034 has remote Denial of Service (DoS) – Remote exploit code appears to be ready soon… maybe.  Stay tuned. BLUE TEAM MARCHING ORDERS: – Patch. Now. Please. – Pay *very* careful attention to your IIS logs for systems that are attacking or attempting the DoS.  You are being profiled. […]

Read the entire post here

A Need For A Change – or – Burning Your Money

InfoSec 201, News breach, external breach, internal breach, it security, verizon breach report

A Need For A Change – or – Burning Your Money

Mick Douglas // Take look at this chart from last year’s Verizon Data Breach Report.  It shows who notified the breached party when they were attacked. This graph is a sad indictment for all of us in the information protection industry.  This chart means that only about 1 in 8 times there’s a breach it’s […]

Read the entire post here

«‹ 54 55 56 57 58

Follow Us

Looking For Something?

Subscribe to the BHIS blog

Don't get left in the dark! Enter your email address and every time a post goes live you'll get an instant notification! We'll also add you to our webcast list, so you won't miss our occasional emails about upcoming events! (We promise, we're not spammy!)

Browse by category

Recent Posts

  • Talkin’ About Infosec News – 2/24/2021
    Originally Aired on February 24, 2021 Articles
  • Talkin’ About Infosec News – 2/22/2021
    Originally Aired on February 22, 2021 Articles
  • Talkin’ About Infosec News – 2/17/2021
    Originally Aired on February 17, 2021 Articles

Browse by topic

Active Directory ADHD anti-virus Attack Tactics AV Blue Team bypassing AV C2 cloud command and control hardware hacking Hashcat infosec john strand Jordan Drysdale Kent Ickler Linux LLMNR MailSniper Microsoft Nessus Nmap Password cracking password policy passwords password spraying pen-testing penetration testing pentest Pentesting phishing podcast Podcasts PowerShell Python Raymond Felch Red Team red teaming RITA social engineering Sysmon tools webcast webcasts Windows

Archives

Black Hills Information Security

115 W. Hudson St. Spearfish, SD 57783 | 701-484-BHIS
© 2008

Links
Search the site