7MS #663: Pentesting GOAD SCCM
7 Minute Security21 Feb

7MS #663: Pentesting GOAD SCCM

Today we live-hack an SCCM server via GOAD SCCM using some attack guidance from Misconfiguration Manager! Attacks include:

  • Unauthenticated PXE attack
  • PXE (with password) attack
  • Relaying the machine account of the MECM box over to the SQL server to get local admin

Avsnitt(682)

7MS #2: The Importance of Logging and Alerting! (audio)

7MS #2: The Importance of Logging and Alerting! (audio)

In this episode I talk about how a client of ours learned a hard lesson: that the lack of logging/alerting makes for a pretty miserable investigation after they were breached. Download: Episode 2: The Importance of Logging and Alerting! (audio) Show notes: Public-facing terminal servers without 2FA basically have a sign on their back that…

1 Feb 20147min

7MS #1: Epic Introduction! (audio)

7MS #1: Epic Introduction! (audio)

In this episode, I talk about the inspiration behind the 7MS podcast and my vision for it going forward. (Admittedly, my ulterior motive is to use this intro episode to figure out how in the heck to get this podcast submitted and visible on iTunes :-). Download Episode 1: Epic Introduction to 7MS (MP3) I’ll…

1 Feb 20147min

Populärt inom Politik & nyheter

p3-krim
svd-dokumentara-berattelser-2
flashback-forever
olyckan-inifran
rss-viva-fotboll
svenska-fall
rss-vad-fan-hande
aftonbladet-daily
rss-sanning-konsekvens
fordomspodden
motiv
blenda-2
rss-krimstad
krimmagasinet
spar
dagens-eko
rss-expressen-dok
rss-frandfors-horna
spotlight
svd-nyhetsartiklar