May 27, 2022
Hey friends, a while back in episode #505 we talked about pwning wifi PSKs and PMKIDs with Bettercap. Today I'm revisiting that with even some more fun command line kung fu to help you zero in on just the networks you're interested in and filter out a bunch of noisy events from bettercap in...
May 20, 2022
Hey friends! Today's another swell tale of pentest pwnage, and it's probably my favorite one yet (again)! This tale involves resource based constrained delegation, which is just jolly good evil fun! Here are my quick notes for pwning things using RBCD:
# From non-domain joined machine, get a cmd.exe running in the...
May 13, 2022
Hey friends, today we're giving another peek behind the curtain of what it's like to run a cybersecurity consultancy. Topics include:
Setting the right communication cadence - and communication channels - with a customer during a pentest.
Tips for collaborating well with contractors so that the customer experience...
May 7, 2022
Hey friends, it's another fun tale of pentest pwnage today! This one talks about cool things you can do when you have full rights over an OU in Active Directory. Important links to review: