Corey Ham, External/Internal, GRC, Red Team, Webcast Wrap-Up Kelli Tarala, penetration testing, pentest

Why Your Org Needs a Penetration Test Program

This webcast originally aired on February 27, 2025. Join us for a very special free one-hour Black Hills Information Security webcast with Corey Ham & Kelli Tarala on why your […]

Read the entire post here

Chris Sullo, General InfoSec Tips & Tricks, Web App Burp Suite, Copy For

Burp Suite Extension: Copy For 

If you’ve ever had to take a request from Burp and turn it into a command line, especially for jwt_tool.py, you know it can be painful—but no more! The “Copy For” extension is here to save valuable time. 

Read the entire post here

Informational, InfoSec 301, Webcast Wrap-Up, Webcasts Dark Web, Tor

Light at the End of the Dark Web

Join us for this one-hour Black Hills Information Security webcast with Joseph – Security Analyst, as he shares with you what he’s discovered and learned about the Dark Web, so you never ever ever have to go there for yourself.

Read the entire post here

Ben Bowman, Hardware Hacking, Informational, Wireless wi-fi, Wi-Fi Forge

Wi-Fi Forge: Practice Wi-Fi Security Without Hardware 

In the world of cybersecurity, it’s important to understand what attack surfaces exist. The best way to understand something is by first doing it. Whether you’re an aspiring penetration tester, […]

Read the entire post here

Brian Fehrman, How-To, Informational AI, Artificial Intelligence, LangChain, LangSmith, Large Language Models, LLM, Machine Learning, Ollama, RAG, Retrieval-Augmented Generation

Avoiding Dirty RAGs: Retrieval-Augmented Generation with Ollama and LangChain

RAG connects pre-trained LLMs with current data sources. Moreover, a RAG system can use many data sources.

Read the entire post here

External/Internal, How-To, Informational, Nick Caswell, Phishing, Red Team, Red Team Tools, Social Engineering GoPhish, Mail Security, Phishing Campaign

Gone Phishing: Installing GoPhish and Creating a Campaign

GoPhish provides a nice platform for creating and running phishing campaigns. This blog will guide you through installing GoPhish and creating a campaign. 

Read the entire post here

Blue Team, Incident Response, John Strand, Red Team, Webcast Wrap-Up AI, cloud, penetration testing

5 Things We Are Going to Continue to Ignore in 2025

In this video, John Strand discusses the complexities and challenges of penetration testing, emphasizing that it goes beyond just finding and exploiting vulnerabilities.

Read the entire post here

General InfoSec Tips & Tricks, How-To, Informational, InfoSec 101, John Strand Infosec for Beginners, PROMPT#, SOC Issue

John Strand’s 5 Phase Plan For Starting in Computer Security

This article was originally published in the SOC Issue of our PROMPT# zine, which you can read for free HERE. The information was adapted from the 2018 webcast “John Strand’s […]

Read the entire post here

Hunt Teaming, Informational, InfoSec 101 Beginner, On the Hunt, PROMPT#, Q&A, threat hunting

Questions From a Beginner Threat Hunter

Answered by Chris Brenton of Active Countermeasures | Questions compiled from the infosec community by Shelby Perry This article was originally published in the Threat Hunting issue of our infosec […]

Read the entire post here