Web App Pen Testing in an Angular Context
Joff Thyer // If you are a fan of web application pen testing, you have been spoiled with a lot of easy pickings over the years. We all love our […]
Information From Thin Air: Using SDR to Extract DTMF from Radio Waves
Ray Felch // Disclaimer When using an FM transmitter, do not modify the intended operation of the module by amplifying the transmitted signal. Also, be sure that attaching an FM high gain […]
Finding Buried Treasure in Server Message Block (SMB)
David Fletcher // Service Message Block (SMB) shares can represent a significant risk to an organization. Companies often lack a realistic understanding of the exposure that SMB shares represent. Effective management typically requires a sound information management […]
Using Infrared for Hardware Control
Ray Felch // Overview Infrared technology has been around for a very long time and is a wireless technology used in devices that convey data by way of Infrared radiation. […]
Webcast: OPSEC Fundamentals for Remote Red Teams
During remote red team exercises, it can be difficult to keep from leaking information to the target organization’s security team. Every interaction with the target’s website, every email sent, and […]
Podcast: Play in new window | Download
Subscribe: Apple Podcasts | Spotify | Amazon Music | RSS
Backdoors & Breaches – Tabletop Simulator Guide
Edward Miro // Backdoors & Breaches is now available as an official Workshop Mod for Tabletop Simulator! Backdoors & Breaches (B&B) contains 52+ unique cards to help you conduct incident […]
Webcast: Sacred Cash Cow Tipping 2021
It is another year for the Sacred Cash Cow Tipping Webcast. For those of you who are new to our email list within the past year, this is a webcast […]
Podcast: Play in new window | Download
Subscribe: Apple Podcasts | Spotify | Amazon Music | RSS
Webcast: Move Aside Script Kiddies – Malware Execution in the Age of Advanced Defenses
A few short years ago, penetration testers did not have to work too hard for their malware command channels to execute. Fast forward to today in the age of Endpoint […]
Podcast: Play in new window | Download
Subscribe: Apple Podcasts | Spotify | Amazon Music | RSS
A Sysmon Event ID Breakdown – Updated to Include 29!!
Jordan Drysdale // UPDATES! October 30, 2023There’s been an additional update for Sysmon! Event ID 29! Another Event ID (EID) was added to the Sysmon service. This event ID followed […]