all InfoSec news
7MS #591: Tales of Pentest Pwnage - Part 52
Sept. 29, 2023, 4:55 p.m. | Brian Johnson
7 Minute Security 7ms.us
Today we talk about an awesome path to internal network pentest pwnage using downgraded authentication from a domain controller, a tool called ntlmv1-multi, and a boatload of cloud-cracking power on the cheap from vast.ai. Here's my chicken scratch notes for how to take the downgraded authentication hash
authentication called cloud controller cracking domain domain controller hash internal internal network network path pentest pentesting podcast power today tool vast
More from 7ms.us / 7 Minute Security
7MS #607: How to Succeed in Business Without Really Crying - Part 15
3 months, 3 weeks ago |
7ms.us
7MS #606: Hacking OWASP Juice Shop (2024 edition)
3 months, 4 weeks ago |
7ms.us
7MS #600: First Impressions of Using AI on Penetration Tests
5 months, 1 week ago |
7ms.us
7MS #599: Baby's First Responsible Disclosure
5 months, 2 weeks ago |
7ms.us
Jobs in InfoSec / Cybersecurity
Senior Associate, Cybersecurity Operations
@ Ares Management Corporation | Los Angeles, CA - CULVER CITY
Senior DevSecOps Engineer
@ Peraton | Fort Gordon, GA, United States
Senior DevSecOps Engineer
@ Diverto | Zagreb, Croatia
Lead DevSecOps Engineer
@ DTCC | Tampa, FL, United States
Incident Responder (Fraud Threat Management)
@ Scotiabank | Toronto, ON, CA, M5H1H1
Penetration Tester, Expert (Federal agency) - Tysons, VA - Full Time
@ iSoftTek Solutions | Tysons, Virginia, United States