close menu
Shop Our Merch Report A Breach 1-877-550-4728
Latest
Critical Vulnerability in Progress MOVEit Transfer: Technical Analysis and Recommendations
June 1, 2023
By Tyler Hudak in Incident Response, Incident Response & Forensics
Featured
Better Hacking Through Cracking: Know Your Rules
April 21, 2023
By TrustedSec in Cloud Assessment, Cloud Baseline Configuration Review, Cloud Penetration Testing, Penetration Testing, Security Testing & Analysis
Most Read
Critical Outlook Vulnerability: In-Depth Technical Analysis and Recommendations (CVE-2023-23397)
March 17, 2023
By Olivia Cate, Justin Elze, Leo Bastidas, Robert R. Lee Jr., Andrew Schwartz, Carlos Perez and Oddvar Moe in Incident Response, Incident Response & Forensics, Purple Team Adversarial Detection & Countermeasures, Research, Vulnerability Assessment

PPID Spoofing: It’s Really this Easy to Fake Your Parent

May 30, 2023
By Scott Nusbaum in Incident Response & Forensics, Malware Analysis
1 New Blog Series on Common Malware Tactics and Tricks This will be the first post in a series of blogs covering some common malware tactics and tricks. The following list is of topics that will be discussed in these blogs. However, feel free to reach out if there is topic that is not on...

JavaScript Essentials for Beginning Pentesters

May 23, 2023
By Luke Bremer in Penetration Testing
JavaScript is heavily used in almost all modern web applications. Knowing how to format a .js file, set breakpoints, and alter a script’s logic on the fly can be very helpful when working with web applications. To start, let’s navigate to a website and view the application’s resources. For our example, we are using the...

Walking the Tightrope: Maximizing Information Gathering while Avoiding Detection for Red Teams

May 18, 2023
By Justin Elze in Penetration Testing, Red Team Adversarial Attack Simulation
Analyze the balance between gaining useful information and avoiding detection, detailing recon techniques that can be employed without compromising stealth. Rob Joyce, who at the time was Head of the NSA’s Tailored Access Operations group, had this great quote from a 2016 USENIX talk: “We put the time in to know that network. We put...

Cybersecurity Policy Enforcement: Strategies for Success

May 16, 2023
By Jared McWherter in Program Assessment & Compliance, Program Maturity Assessment, Security Program Assessment
Introduction Your organization has invested significant effort in formally documenting its approach toward cybersecurity to enhance accountability and awareness of security processes; however, operationalizing and enforcing this policy library can appear challenging. Failure to consistently enforce cybersecurity policies generally leads to a degradation of the environment, as individuals come to understand that they will not...
Learning Sysmon Series - Videos 1-10

Learning Sysmon – Videos 1-10

May 12, 2023
By Carlos Perez in Research
Watch “Learning Sysmon,” a new video series hosted by Research Team Lead Carlos Perez on YouTube now!

Windows LAPS: Closing a Gap for Cloud-Native Device Management

May 9, 2023
By Phil Rowland in Cloud Assessment, Remediation Assistance & Training, Security Remediation
1 TLDR; Microsoft is releasing an Azure AD integrated, built-in LAPS agent to Windows 10 and Windows 11 that can be controlled by Intune. 1.1      Problem Statement Migrating Windows endpoints to Intune-only management left gaps in controllable settings. An alternative for traditional Local Administrator Password Solution (LAPS) in an on-premises domain has been a primary...

  • Search the blog

  • Search by Author

  • Browse by date

  • Browse by Category

  • Clear Form
3485 Southwestern Boulevard
Fairlawn, OH 44333
1-877-550-4728
  • Follow TrustedSec on Twitter
  • Connect with TrustedSec on LinkedIn
  • Get TrustedSec's RSS feed

Get TrustedSec in your inbox

Sign up to receive the latest in cybersecurity news and resources

    By submitting this form, I agree to receive marketing communications from TrustedSec, which I can unsubscribe from at any time.

    This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
    © Copyright 2023 by TrustedSec. All rights reserved.