7MS #714: Tales of Pentest Pwnage – Part 81
7 Minute Security
Hello friends! We’re back with a fun tale of internal network pentest pwnage. This one highlights how AI can be used (with some guardrails!) to automate the boring stuff – and even help you pick part DLLs to find gold nuggets! P.S. – I do recommend you check out our last three episodes that are all about securing your community, and please check out which will give you a full picture of what has been going on in Minnesota as it relates to the occupation of ICE agents.
info_outline
7MS #713: How to Secure Your Community – Part 3
7 Minute Security
Hello friends, in today’s edition of How to Secure Your Community, I give a brief recap of and , and then dive into some cool phone shortcuts you can setup so that with a single tap, you can alert friends/family that you’re having an encounter with law enforcement and may need an assist. Here’s the things/links discussed: This great which features interviews and first-hand stories of ICE encounters here in Minnesota Fashlight.org , which features some cool shortcuts you can setup on iPhone to alert friends/family that you’re having a negative...
info_outline
7MS #712: How to Secure Your Community - Part 2
7 Minute Security
Hello friends. Today’s episode piggybacks off of ‘s discussion of Operation Metro Surge and how it has affected the state of Minnesota. I also highly encourage you to read this which features interviews and first-hand stories of ICE encounters. And for those of you asking for a good org to support here in Minnesota, please support . They give rides/food to people who are detained by ICE and then cut loose – often without their jackets or phones – into the cold of winter with no ride home. Today I pivot more into the technical weeds...
info_outline
7MS #711: How to Secure Your Community
7 Minute Security
Hello friends, it’s good to be back with you. I took a podcast hiatus in January to focus on helping communities affected by . Today I share how my family and community has been affected by it. And then in future episodes of this series, I’ll get more into some technical nuts and bolts on how to be a more secure community helper – such as tightening up security settings on apps you use, “hardening” your phone, increasing your personal security/privacy posture, and more.
info_outline
7MS #710: I’m Taking a Break
7 Minute Security
Hi friends, I’m going to be taking a break from producing podcast episodes, as well as content over at . It’s a temporary break, so please don’t unsubscribe, unfollow, etc. I need some extra time/energy to invest in helping our friends/family/neighbors/communities in the Twin Cities. Important note: our professional services are not impacted by this. If you have security projects going on with us now (or want to in the future), nothing has changed there. It’s business as usual. Looking forward to reconnecting with you and providing more...
info_outline
7MS #709: Second Impressions of Twingate
7 Minute Security
Hey friends, in episode #649 I gave you my . It’s been a minute, so I thought I’d revisit Twingate (specifically this awesome ) and talk about how we’re using it to (almost) entirely replace remote access to our datacenter servers and pentest dropboxes. Also, don’t forget: Our pentest class is coming up at the end of the month – more info . We do a Tuesday TOOLSday video every Tuesday over at .
info_outline
7MS #708: Tales of Pentest Fail – Part 6
7 Minute Security
After sharing a recent , I heard feedback from a lot of you. You either commiserated with my story, told me I wussed out, and/or had a difficult story of your own to share. So I thought I’d keep this momentum up and share another story of fail with you – this time about a Web app pentest that went south.
info_outline
7MS #707: Our New Pentest Course Has Launched!
7 Minute Security
Today we’re thrilled to announce the launch of LPLITE:GOAD (Light Pentest Live Interactive Training Experience: Game of Active Directory). The first class is coming up Tuesday, January 27 – Thursday, January 29 (9:00 a.m. – 1:00 p.m. CST each day). More information, pricing information and more can be found at . Today I talk about who should sign up for the course, what you should bring, and some of the awesome things you’ll be doing should you choose to join me on this hacking adventure!
info_outline
7MS #706: Tales of Pentest Pwnage – Part 80
7 Minute Security
I’m so excited to share today’s tale of pentest pwnage, because it brings back to life a coercion technique I thought wouldn’t work against Windows 11! Spoiler alert: check out , as well as the we did on the topic this week. Also, our January Light Pentest LITE:GOAD class is open for registration !
info_outline
7MS #705: A Phishing Campaign Fail Tale
7 Minute Security
This might be obvious, but security is not all domain admin dancing and maximum pwnage. Sometimes, despite my best efforts, a security project does a faceplant. Today’s episode focuses on a phishing campaign that had plenty of “bites” but got immediately shut down – for reasons I still don’t understand.
info_outlineIn today’s episode:
- I got a new podcast doodad
- I really like JitBit as a security ticketing system (not a sponsor)
- The Threat Hunting with Velociraptor 2-day training was great. Highly recommend. I got inspired to take this class after watching the 1-hour primer here.