Podcast Episodes
Back to Search7MS #675: Pentesting GOAD – Part 2
Hey friends! Today Joe “The Machine” Skeen and I tackled GOAD (Game of Active Directory) again – this time covering:
SQL link abuse between two domains Forging inter-realm TGTs to conquer the covete…Published on 4 months, 2 weeks ago
7MS #674: Tales of Pentest Pwnage – Part 71
Today’s tale of pentest pwnage is another great one! We talk about:
The SPNless RBCD attack (covered in more detail in this episode) Importance of looking at all “branches” of outbound permissions …Published on 4 months, 3 weeks ago
7MS #673: ProxmoxRox
Today we’re excited to release ProxmoxRox – a repo of info and scripts to help you quickly spin up Ubuntu and Windows VMs. Also, some important news items:
7MinSec.club in-person meeting is happeni…Published on 5 months ago
7MS #672: Tales of Pentest Pwnage – Part 70
Today’s a fun tale of pentest pwnage where we leveraged a WinRM service ticket in combination with the shadow credentials attack, then connected to an important system using evil-winrm and make our g…
Published on 5 months, 1 week ago
7MS #671: Pentesting GOAD
Hello! This week Joe “The Machine” Skeen and I kicked off a series all about pentesting GOAD (Game of Active Directory). In part one we covered:
Checking for null session enumeration on domain cont…Published on 5 months, 2 weeks ago
7MS #670: Adventures in Self-Hosting Security Services
Hi friends, today I’m kicking off a series talking about the good/bad/ugly of hosting security services. Today I talk specifically about transfer.zip. By self-hosting your own instance of transfer.zi…
Published on 5 months, 3 weeks ago
7MS #669: What I’m Working on This Week – Part 3
Hi friends, in this edition of what I’m working on this week:
3 pulse-pounding pentests that had…problems Something I’m calling the unshadow/reshadow credentials attack Heads-up on a new video exper…Published on 5 months, 4 weeks ago
7MS #668: Tales of Pentest Pwnage – Part 69
Hola friends! Today’s tale of pentest pwnage talks about abusing Exchange and the Azure ADSync account! Links to the discussed things:
adconnectdump – for all your ADSync account dumping needs! Adam…Published on 6 months ago
7MS #667: Pentesting GOAD SCCM - Part 2!
Hey friends, our good buddy Joe “The Machine” Skeen and I are back this week with part 2 (check out part 1!) tackling GOAD SCCM again! Spoiler alert: this time we get DA! YAY!
Definitely check out …
Published on 6 months, 1 week ago
7MS #666: Tales of Pentest Pwnage – Part 68
Today we have a smattering of miscellaneous pentest tips to help you pwn all the stuff!
Selective Snaffling with Snaffler The importance of having plenty of dropbox disk space – for redundant remote…Published on 6 months, 2 weeks ago