TrustedSec Podcast Episode 3.2 – Airlines: E-mail and Intel

September 14, 2018 | By:

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Hans Lakhan, Justin Bollinger, and introducing Logan Sampson Title: British Airways breach caused by the same group that hit Ticketmaster URL: https://www.zdnet.com/article/british-airways-breach-caused-by-the-same-group-that-hit-ticketmaster/ Author: Catalin Cimpanu Title:…


TrustedSec Podcast Episode 3.1 – Another Epic? Struts Exploit and PHP

August 31, 2018 | By:

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rob Simon, Justin Bollinger, and introducing Logan Sampson Title: Experts Urge Rapid Patching of Struts Bug URL: https://krebsonsecurity.com/2018/08/experts-urge-rapid-patching-of-struts-bug/ Author: Brian Krebs Title: Epic Games First Fortnite…


TrustedSec Podcast Episode 3.0 – Why it matters where you put your luggage in Vegas

August 17, 2018 | By:

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rob Simon, Justin Bollinger, Ben Mauch, and David Boyd Title: Vegas – Where Thugs Come Into Your Room And Search Your Stuff https://www.secjuice.com/defcon-hotel-security-fiasco/amp/?__twitter_impression=true Author: Infosec Scribe…


Episode 2.16 It’s all over people! – Your wallet is unhackable but I have your password and more!

August 03, 2018 | By:

  Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Geoff Walton, Rob Simon, Justin Bollinger, and Scot Berner   Show Links: https://twitter.com/Bitfi6 https://krebsonsecurity.com/2018/07/sextortion-scam-uses-recipients-hacked-passwords/ https://www.cybereason.com/blog/wmi-lateral-movement-win32 https://www.cybereason.com/blog/wmi-lateral-movement-win32 https://www.csis.org/analysis/low-hanging-fruit-evidence-based-solutions-digital-evidence-challenge   Tool Time Notes: https://github.com/NetSPI/PowerShell/blob/master/Invoke-ExternalDomainBruteforce.ps1 https://bitbucket.org/grimhacker/office365userenum/src


Building a “Quick” Lab Environment with Linux Containers

July 03, 2018 | By:

As a penetration tester, I often need to stand up small environments (and sometimes not so small) for a few different reasons—to try things out before making a mess of a client’s production system, to avoid being detected, or to use it simply for our own practice. A lot of us at TrustedSec are remote,…


Episode 2.15 – FTP is still a thing – DNS and Settings Content Files!

July 16, 2018 | By:

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Dave Kennedy, Ben Tenjamin, Geoff Walton, Chris Prewitt, Justin Bollinger


Episode 2.14 – Zip Slip Slip and split it up to the hip hip hip!

June 07, 2018 | By:

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Dave Kennedy, Ben Tenjamin, Geoff Walton, Chris Prewitt, Justin Bollinger


Episode 2.13 (lucky 13) – Let’s talk about facebook! Plaintext Passwords and More!

April 13, 2018 | By:

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Dave Kennedy, Ben Tenjamin, Geoff Walton, Chris Prewitt, Justin Bollinger


Episode 2.12 Is that CryptoMiner or a Utility? Wildcards for the Masses, Look-a-Likes, and More CPU Vulnerabilities

March 16, 2018 | By:

Welcome to the Trusted Security Podcast – a podcast dedicated to bringing the latest news on information security and the industry. This episode features the following members: Dave Kennedy, Ben Tenjamin, Geoff Walton, Chris Prewitt, Justin Bollinger


More Complex Intruder Attacks with Burp!

December 21, 2017 | By:

Recently I was performing an external penetration test, and there was not a lot of attack surface but there was a firewall device present with one of those browser based SSL VPN services. Without a lot to go on other than some usernames gathered from LinkedIn, this seemed like a door worth trying to force….