Informational

How-To, Informational, Red Team BYOI, Marcello Salvati, Red Team

Red Teamer’s Cookbook: BYOI (Bring Your Own Interpreter)

Marcello Salvati // This fairly lengthy blog post aims at providing Red Team Operators ideas on how to incorporate BYOI tradecraft into their own custom tooling and get those creative […]

Read the entire post here

00432_01242020_DumpingFirmwareWithCH341a

Hardware Hacking, How-To, Informational AsProgrammer, Rick Wisser

Dumping Firmware With the CH341a Programmer

Rick Wisser // Note: This blog will also be a lab for any of the upcoming Wild West Hackin’ Fest Conferences. During a recent engagement, I came across an issue. […]

Read the entire post here

00431_01232020_WhatYouShouldLearnPentestReport

Informational, InfoSec 101 dakota nelson, pentest reports, Pentesting

What You Should Actually Learn From a Pentest Report

Dakota Nelson // Unknown Unknowns: So you’ve been pentested. Congrats! It might not feel like it, but this will eventually leave you more confident about your security, not less. The […]

Read the entire post here

00430_01222020_HowToReplayRFSignalsSDR-1

Author, Hardware Hacking, How-To, Informational, Ray Felch Raymond Felch, SDR, Software Defined Radio

How To Replay RF Signals Using SDR

Ray Felch // SOFTWARE DEFINED RADIO: RF Signal Replay Techniques Disclaimer: Be sure to use a faraday bag or cage before transmitting any data so you don’t accidentally break any […]

Read the entire post here

00424_12112019_PodcastPasswordsWeakestLink

Informational, InfoSec 101, Password Cracking, Password Spray, Podcasts Darin Roberts, Password cracking, password policy, passwords

Podcast: Passwords: You Are the Weakest Link

Why are companies still recommending an 8-character password minimum? Passwords are some of the easiest targets for attackers, yet companies still allow weak passwords in their environment. Multiple service providers recommend […]

Podcast: Play in new window | Download

Subscribe: Apple Podcasts | Spotify | Amazon Music | RSS

Read the entire post here

Author, General InfoSec Tips & Tricks, How-To, Informational, InfoSec 101, John Strand, Webcasts carbonblack, Cisco, Cylance Bypass, john strand, PowerShell, Sacred Cash Cow Tipping, webcasts, Windows Defender

Webcast: Sacred Cash Cow Tipping 2020

Want to learn how attackers bypass endpoint products? Slides for this webcast can be found here: https://www.blackhillsinfosec.com/wp-content/uploads/2020/09/SLIDES_SacredCashCowTipping2020.pdf 3:41 – Alternate Interpreters 9:19 – Carbon Black Config Issue 15:07 – Cisco […]

Podcast: Play in new window | Download

Subscribe: Apple Podcasts | Spotify | Amazon Music | RSS

Read the entire post here

00427_01072020_WebcastLetsTalkAboutElkBaby

Author, Blue Team, Blue Team Tools, How-To, Informational, Jordan Drysdale, Kent Ickler, Podcasts, Webcasts Active Directory, applocker, Atomic Red Team, ATT&CK, ELK, Group Policies, Jordan Drysdale, Kent Ickler, Sysmon, Windows logging, Winlogbeat

Webcast: Let’s Talk About ELK Baby, Let’s Talk About You and AD

BHIS’ Defensery Driven Duo Delivers Another Delectable Transmission! We know you are worried about your networks. After hours of discussion, we’ve come to the realization that some of our dedicated […]

Podcast: Play in new window | Download

Subscribe: Apple Podcasts | Spotify | Amazon Music | RSS

Read the entire post here

Author, How-To, Informational, Michael Allen, Password Cracking Michael Allen, Paper Password Manager, password management, passwords

The Paper Password Manager

Michael Allen // Every year around the holidays I end up having a conversation with at least one friend or family member about the importance of choosing unique passwords for […]

Read the entire post here

Fun & Games, Informational dakota nelson, hackmas

‘Twas the Week Before Hackmas

Dakota Nelson // ‘Twas the week before HackmasAnd all through their housesNot a tester was workingNor moving their mouses The findings were listed in reports with careIn hopes that bugfixes […]

Read the entire post here

«‹ 34 35 36 37 ›»