7MS #640: Tales of Pentest Pwnage – Part 63
This was my favorite pentest tale of pwnage to date! There's a lot to cover in this episode so I'm going to try and bullet out the TLDR version here: Sprinkled farmer files around the environment Fo...
7 Sep 202443min
7MS #639: Tales of Pentest Pwnage - Part 62
Today's tale of pentest pwnage talks about the dark powers of the net.py script from impacket.
3 Sep 20247min
7MS #638: Tales of Pentest Pwnage – Part 61
Today we're talking pentesting – specifically some mini gems that can help you escalate local/domain/SQL privileges: Check the C: drive! If you get local admin and the system itself looks boring, che...
23 Aug 202432min
7MS #637: BPATTY[RELOADED] Release Party
Hello friends, I'm excited to release BPATTY[RELOADED] into the world at https://bpatty.rocks! – which stands for Brian's Pentesting and Technical Tips for You! It's a knowledge base of IT and securit...
17 Aug 20247min
7MS #636: A Prelude to BPATTY(RELOADED)
Artificial hype alert! I'm working on a NEW version of BPATTY (Brian's Pentesting and Technical Tips for You), but it is delayed because of a weird domain name hostage negotiation situation. It's we...
12 Aug 202411min
7MS #635: Eating the Security Dog Food - Part 7
Today we're talking about eating the security dog food – specifically: Satisfying critical security control #1 Using the Atlassian family of tools to create a ticketing/change control system and wrap...
3 Aug 202445min
7MS #634: Tales of Pentest Pwnage - Part 60
Hi, today's tale of pentest pwnage covers a few wins and one loss: A cool opportunity to drop Farmer "crops" to a domain admin's desktop folder via PowerShell remote session Finding super sensitive d...
26 Jul 202432min
7MS #633: How to Create a Security Knowledgebase with Docusaurus
Hey friends, we're doing a little departure from our normal topics and focusing on how to create a security knowledgebase (is that one word or two?) using Docusaurus! It's cool, it's free, it's from ...
19 Jul 202414min
