Preview Mode Links will not work in preview mode

7 Minute Security

Aug 23, 2024

Today we’re talking pentesting – specifically some mini gems that can help you escalate local/domain/SQL privileges:

  • Check the C: drive! If you get local admin and the system itself looks boring, check root of C – might have some interesting scripts or folders with tools that have creds in them.
  • Also look at Look...


Aug 17, 2024

Hello friends, I’m excited to release BPATTY[RELOADED] into the world at https://bpatty.rocks! – which stands for Brian’s Pentesting and Technical Tips for You! It’s a knowledge base of IT and security bits that help me do a better job doing security stuff! Today I do an ACTUAL 7-minute episode (GASP…what a...


Aug 12, 2024

Artificial hype alert!  I’m working on a NEW version of BPATTY (Brian’s Pentesting and Technical Tips for You), but it is delayed because of a weird domain name hostage negotiation situation.  It’s weird.  But in the meantime I want to talk about the project (which is a pentest documentation library built on...


Aug 3, 2024

Today we’re talking about eating the security dog food – specifically:

  • Satisfying critical security control #1
  • Using the Atlassian family of tools to create a ticketing/change control system and wrap it into an asset inventory
  • Leveraging Wazuh as a security monitoring system (with eventual plans to leverage its API...