7MS #671: Pentesting GOAD
Hello! This week Joe "The Machine" Skeen and I kicked off a series all about pentesting GOAD (Game of Active Directory). In part one we covered: Checking for null session enumeration on domain contr...
18 Huhti 202525min
7MS #670: Adventures in Self-Hosting Security Services
Hi friends, today I'm kicking off a series talking about the good/bad/ugly of hosting security services. Today I talk specifically about transfer.zip. By self-hosting your own instance of transfer.zip...
11 Huhti 202536min
7MS #669: What I'm Working on This Week – Part 3
Hi friends, in this edition of what I'm working on this week: 3 pulse-pounding pentests that had…problems Something I'm calling the unshadow/reshadow credentials attack Heads-up on a new video experi...
4 Huhti 202542min
7MS #668: Tales of Pentest Pwnage – Part 69
Hola friends! Today's tale of pentest pwnage talks about abusing Exchange and the Azure ADSync account! Links to the discussed things: adconnectdump – for all your ADSync account dumping needs! Adam ...
28 Maalis 202530min
7MS #667: Pentesting GOAD SCCM - Part 2!
Hey friends, our good buddy Joe "The Machine" Skeen and I are back this week with part 2 (check out part 1!) tackling GOAD SCCM again! Spoiler alert: this time we get DA! YAY! Definitely check out t...
21 Maalis 202528min
7MS #665: What I'm Working on This Week - Part 2
Hello there friends, I'm doing another "what I'm working on this week" episode which includes: BPATTY v1.6 release – big/cool/new content to share here PWPUSH – this looks to be an awesome way (both ...
7 Maalis 202528min
7MS #664: What I'm Working on This Week
In today's episode I talk about what I'm working on this week, including: Playing with Sliver C2 and pairing it with ShellcodePack Talking about Netexecer, my upcoming tool that helps automate some o...
28 Helmi 202525min
