IM
IronMonkey Threat Research
LIVE
|
Articles 27,088
|
CVEs 348,689
|
APT Groups 800
|
Tools 2,196
|
Updated recently
Today Yesterday All 27,056 articles — Page 446 of 902
Blue Team Archives - Black Hills Information Security, Inc. ·

Jordan Drysdale// tl;dr Vulnerability management is a part of doing business and operating on the public internet these days. Include training as part of this Critical Control. Users should be […]...

Information Technology Author Blue Team
Blue Team Archives - Black Hills Information Security, Inc. ·

Kent Ickler and Derrick Rauch* // Sun Protection Factor Err… wait a second. Sender Policy Framework Ladies and Gentlemen of the class of 1997, Wear Sunscreen…I will dispense my advice, […] The...

Information Technology Blue Team How-To
Blue Team Archives - Black Hills Information Security, Inc. ·

Kent Ickler // Link-Local Multicast Name Resolution (LLMNR) This one is a biggie, and you’ve probably heard Jordan, John, me, and all the others say it many many times. LLMNR […] The post How To...

Information Technology Energy Author Blue Team
Blue Team Archives - Black Hills Information Security, Inc. ·

John Strand // This is the second part of our series about Attack Tactics, sponsored by our sister company, Active Countermeasures. In the first part we discussed how we’d attack. […] The post...

Blue Team Webcasts
Blue Team Archives - Black Hills Information Security, Inc. ·

John talked about how we’d attack, here’s how you can defend against those attacks. Grab the slides here: https://blackhillsinformationsecurity.shootproof.com/gallery/6843799/ The post PODCAST:...

Author Blue Team
Blue Team Archives - Black Hills Information Security, Inc. ·

Kent Ickler // TL;DR: This post describes the process of building an active system to automatically recon SPF violations. Disclaimer: There are parts of this build that might not be legal […] The...

Information Technology Author Blue Team
Blue Team Archives - Black Hills Information Security, Inc. ·

Jordan Drysdale// Full disclosure and tl;dr: The NCC Group has developed an amazing toolkit for analyzing your AWS infrastructure against Amazon’s best practices guidelines. Start here:...

Author Blue Team
Blue Team Archives - Black Hills Information Security, Inc. ·

Scott Worden* // So you and your company had a pen test…now what? What to do, how to plan, and good SQUIRREL! ways to stay on track. The 3 […] The post What to Expect After a Pen Test appeared...

Blue Team Finding
Blue Team Archives - Black Hills Information Security, Inc. ·

Kent Ickler & Jordan Drysdale // BHIS Webcast and Podcast This post accompanies BHIS’s webcast recorded on August 7, 2018, Active Directory Best Practices to Frustrate Attackers, which you can...

Commercial Facilities Communications Author Blue Team
Blue Team Archives - Black Hills Information Security, Inc. ·

Join John Strand as he continues his Attack Tactic series this time with the defense ideas for the attacks mentioned in episode 3 (see more here) To see the entire […] The post PODCAST: From...

Author Blue Team
Blue Team Archives - Black Hills Information Security, Inc. ·

Join special guest Chris Brenton, COO of Active Countermeasures, as he discusses the anatomy of beacons and why you need to be looking for them during a threat hunt. He […] The post PODCAST:...

Hunt Teaming Podcasts
Blue Team Archives - Black Hills Information Security, Inc. ·

Jordan Drysdale // tl;dr Cisco Smart Install is awesome (on by default)…for hackers… not sysadmins. So, you Nessus too? Criticals and highs are all that matter! Right??? Until this beauty […] The...

Author Blue Team
Blue Team Archives - Black Hills Information Security, Inc. ·

Jordan Drysdale// tl;dr Both Cisco and Nessus have escalated the Smart Install Client Service feature/vulnerability. Nessus is now reporting the Smart Install RCE as critical. High five!!! Cisco...

Author Blue Team
Blue Team Archives - Black Hills Information Security, Inc. ·

Jordan Drysdale// tl;dr Inventory management and personnel management are critical to making this work. Often, the difference between your company becoming a statistic and catching someone with a...

Author Blue Team
Blue Team Archives - Black Hills Information Security, Inc. ·

Take a good look at Bitcoin right now… these are the unlucky ones. These are the unfortunate souls who jumped on another overinflated balloon. But, does this Bitcoin crash completely […] The post...

Financial Services Author Beau Bullock
Blue Team Archives - Black Hills Information Security, Inc. ·

In this BHIS webcast, we cover some new techniques and tactics on how to track attackers via various honey tokens. We cover how to track with Word Web Bugs in ADHD and […] The post BHIS Webcast:...

Author Blue Team
Blue Team Archives - Black Hills Information Security, Inc. ·

In this BHIS podcast, originally recorded as a live webcast, we cover some new techniques and tactics on how to track attackers via various honey tokens. We cover how to […] The post BHIS PODCAST:...

Author Blue Team
Blue Team Archives - Black Hills Information Security, Inc. ·

Mike Felch// How to Purge Google and Start Over – Part 1 Brief Recap In part 1, we discussed a red team engagement that went south when the Google SOC […] The post How to Purge Google and Start...

Financial Services Critical Manufacturing Author Blue Team
Blue Team Archives - Black Hills Information Security, Inc. ·

Slides for this webcast can be found here: https://www.blackhillsinfosec.com/wp-content/uploads/2020/09/SLIDES_AttackTactics6ReturnofBlueTeam.pdf In this webcast we walk through the step-by-step...

Author Blue Team
Blue Team Archives - Black Hills Information Security, Inc. ·

Download slides: https://www.activecountermeasures.com/presentations In this webcast we walk through the step-by-step defenses to stop the attackers in every step of the way we showed in Attack...

Information Technology Author Blue Team
Blue Team Archives - Black Hills Information Security, Inc. ·

Joff Thyer // The Domain Name System (DNS) is the single most important protocol on the Internet. The distributed architecture of DNS name servers and resolvers has resulted in a […] The post Tap...

Information Technology Author Blue Team
Blue Team Archives - Black Hills Information Security, Inc. ·

This webcast was originally given live on June 5th, 2019 by John Strand and the BHIS (card) Testers. How To Play! download and print a pdf version of “how to […] The post Webcast: Introducing...

Author Blue Team
Blue Team Archives - Black Hills Information Security, Inc. ·

Slides for this webcast can be found here: https://www.blackhillsinfosec.com/wp-content/uploads/2020/09/SLIDES_AttackTactics7LogsYouAreLookingFor.pdf So we went through an attack in the BHIS...

Author Blue Team
Blue Team Archives - Black Hills Information Security, Inc. ·

Melissa Bruno // So you have an Internet-facing DNS server. Maybe you decided to set one up at home for fun, or your company has one that works with other […] The post Do You Know If Your DNS...

Information Technology Author Blue Team
Blue Team Archives - Black Hills Information Security, Inc. ·

Sally Vandeven // We have all heard people talk about how much cooler Linux is than Windows, so much easier to use, etc. Well, they are not necessarily wrong… but we […] The post Rainy Day Windows...

Blue Team Blue Team Tools
Blue Team Archives - Black Hills Information Security, Inc. ·

Darin Roberts // “Why do you recommend a 15-character password policy when (name your favorite policy here) recommends only 8-character minimum passwords?” I have had this question posed to me […]...

Blue Team Blue Team Tools
The Citizen Lab ·

On August 21, join Citizen Lab founder and director Ron Deibert as he explores the Lab's groundbreaking work on digital security, surveillance, and human rights, drawing insights from his book...

Food and Agriculture Events
BleepingComputer ·

The Python Package Index (PyPI) has introduced new protections against domain resurrection attacks that enable hijacking accounts through password resets. [...]

Communications Critical Manufacturing Security
Broadcom Software Blogs ·

Part 2 of 2: Sparking IAM insights into action with SiteMinder and MCP

Transportation Systems
BleepingComputer ·

Okta has open-sourced ready-made Sigma-based queries for Auth0 customers to detect account takeovers, misconfigurations, and suspicious behavior in event logs. [...]

Communications Security