7MS #396: Tales of Internal Pentest Pwnage - Part 13
7 Minute Security15 Tammi 2020

7MS #396: Tales of Internal Pentest Pwnage - Part 13

This podcast is sponsored by Arctic Wolf, whose Concierge Security teams Monitor, Detect and Respond to Cyber threats 24/7 for thousands of customers around the world. Arctic Wolf. Redefining cybersecurity. Visit Arcticwolf.com/7MS to learn more.

In last week's episode I was very close to potentially synching up some very sensitive data with my super secret back door account. In this episode, we resolve the cliffhanger and talk about:

python /opt/hashcombiner/hash_combiner.py user_hash hash_password | sort > combined.txt cut -d ':' -f 2 combined.txt > passwords.txt ruby /opt/pipal/pipal.rb passwords.txt > pip.txt
  • The procdump + lsass trick is still really effective (though sometimes AV gobbles it)

(See full show notes at 7ms.us!)

Suosittua kategoriassa Politiikka ja uutiset

aikalisa
rss-ootsa-kuullut-tasta
ootsa-kuullut-tasta-2
politiikan-puskaradio
rss-podme-livebox
viisupodi
otetaan-yhdet
the-ulkopolitist
et-sa-noin-voi-sanoo-esittaa
rss-vaalirankkurit-podcast
rss-raha-talous-ja-politiikka
linda-maria
rss-kovin-paikka
rss-polikulaari-humanisti-vastaa-ja-muut-ts-podcastit
mita-koulussa-ei-opetettu
rss-pallo-keskelle-2
rss-hyvaa-huomenta-bryssel
rss-tyolinjalla-pekka-sauri
rss-tasta-on-kyse-ivan-puopolo-verkkouutiset
rss-hyvinvointiyhteiskunnan-pelastustehtava