7MS #707: Our New Pentest Course Has Launched!

I got a fun project involving wireless sniffing, followed up by scraping through packets looking for credit card data! Here's part 1, which talks about about software/hardware you might need to do thi...

28 Maj 20157min

This week I'll be launching a phishing campaign against an organization that has been well trained to defend against such malicious attacks and links! Will this organization break my company's 100% su...

21 Maj 20157min

I'm excited about this! Microsoft has released a tool called Local Administrator Password Solution to help administrators manage local admin credentials for domain-joined machines. Check out this arti...

19 Maj 20157min

Users running as local admins on their machine are a big risk! This episode discusses some reasons why, and also here is the link to the Avecto study I mention regarding how many Microsoft vulnerabili...

14 Maj 20158min

This episode was inspired by two awesome customer service experiences I had in the past week. It got me thinking: how can we as infosec professionals suck less with our customer service approach? 7MS ...

12 Maj 20158min

A few episodes back I talked about Red Giant, a cool service that provides you with a pre-paid debit card that can be controlled/locked with your phone. I finally got my card working, and this episode...

7 Maj 20157min

At the end of just about every assessment I deliver, the client asks "What should we do first?" They (understandably) want to know a "top 5″ list of things they should change right away to improve the...

5 Maj 20158min

In this episode I talk about a few different ways to approach firewall reviews/audits. This document was very helpful in getting my template started. Also check out Nipper if you're looking for a fire...

30 Apr 20158min