Search Results for: password

Hayden Covington, SOC Alerting, automation, detection engineering, detections, Security Operations Center

The Detection Engineering Process

This webcast was originally published on November 8, 2024. In this video, Hayden Covington discusses the detection engineering process and how to apply the scientific method to improve the quality […]

Read the entire post here

Informational, Michael Allen, Social Engineering, Webcasts Adversary in the Middle, AitM, post-exploitation, Webcast Wrap-Up

Adversary in the Middle (AitM): Post-Exploitation

In this video, Michael Allen discusses adversary-in-the-middle post-exploitation techniques and processes.

Read the entire post here

Blue Team, Blue Team Tools, Guest Author, Informational, InfoSec 101, Red Team, Red Team Tools Beginner, InfoSec Survival Guide, Purple Team

Blue Team, Red Team, and Purple Team: An Overview

By Erik Goldoff, Ray Van Hoose, and Max Boehner || Guest Authors This post is comprised of 3 articles that were originally published in the second edition of the InfoSec […]

Read the entire post here

Informational, Kevin Klingbile, Recon, Webcasts Azure Cloud, Cloud Enum, Cred Master, Graph Runner, M365, Pen Testing, Webcast Wrap-Up

Reconnaissance: Azure Cloud w/ Kevin Klingbile

This webcast was originally published on September 26, 2024. In this video, Kevin Klingbile from Black Hills Information Security discusses the intricacies of Azure Cloud services and M365, focusing on […]

Read the entire post here

Hardware Hacking, How-To, Informational, Intern cFS, ground stations, Python, RF attack chaining, Satellite Hacking, Space systems, Tim Fowler

Satellite Hacking

by Austin Kaiser // Intern Hacking a satellite is not a new thing. Satellites have been around since 1957. The first satellite launched was called Sputnik 1 and was launched […]

Read the entire post here

Informational, James Marrs, Kiersten Gross, Webcast Wrap-Up, Webcasts Audit Inspector, Cyber Investigation, Logging, Sysmon, Windows logs

How Logging Strategies Can Affect Cyber Investigations w/ Kiersten & James 

This webcast was originally published on September 12, 2024.   In this video, Kirsten Gross and James Marrs discuss how logging strategies can affect cyber investigations, specifically focusing on Windows logs. […]

Read the entire post here

Blue Team, David Perez, Incident Response, Informational Azure, Entra ID, SIEM, SOC

Monitoring High Risk Azure Logins 

Recently in the SOC, we were notified by a partner that they had a potential business email compromise, or BEC. We commonly catch these by identifying suspicious email forwarding rules, […]

Read the entire post here

Ashley Knowles, Informational, Phishing, Red Team, Social Engineering InfoSec Survival Guide

How to Perform and Combat Social Engineering

This article was originally published in the second edition of the InfoSec Survival Guide. Find it free online HERE or order your $1 physical copy on the Spearphish General Store. […]

Read the entire post here

External/Internal, General InfoSec Tips & Tricks, How-To, InfoSec 201 audit, GitLab, gitleaks, leaks, secrets

Auditing GitLab: Public Gitlab Projects on Internal Networks

A great place that can sometimes be overlooked on an internal penetration test are the secrets hidden in plain sight. That is, a place where no authentication is required in […]

Read the entire post here