close menu
Report A Breach 1-877-550-4728
Latest
Persistence Through Service Workers-Part 3: Easy JavaScript Payload Deployment
November 23, 2021
By Drew Kirkpatrick in Application Security Assessment, Penetration Testing, Red Team Adversarial Attack Simulation, Security Testing & Analysis
Featured
How we’re making sense of CMMC 2.0
November 16, 2021
By Chris Camejo in CMMC Readiness Review, HIPAA NIST CIS20 SOC ISO 27001 Assessments, Program Assessment & Compliance
Most Read
Blog post cover
Obsidian, Taming a Collective Consciousness
September 7, 2021
By Sam Link in Penetration Testing, Purple Team Adversarial Detection & Countermeasures, Red Team Adversarial Attack Simulation, Research, Security Testing & Analysis

Practical OAuth Abuse for Offensive Operations – Part 1

May 13, 2020
By Scot Berner in Application Security Assessment, Penetration Testing, Purple Team Adversarial Detection & Countermeasures, Red Team Adversarial Attack Simulation, Security Testing & Analysis
Background OAuth is an open authorization standard that facilitates unrelated servers and services working together, allowing access to their assets without sharing the initial, related, single logon credential. I have been thinking of it as a kind of Kerberos for external services, without a shared domain or forest. A familiar instance would be authentication to...

Creating Honey Credentials with LSA Secrets

November 21, 2019
By Scot Berner in Application Security Assessment, Penetration Testing, Security Testing & Analysis
As an attacker, I frequently leverage LSASecrets to escalate privileges within the context of an ongoing compromise. Generally, the attack path is something like this: Gain Initial Foothold > Escalate to Limited User > Dump LSASecrets on Systems Where Credentials are Administrator A pretty slick way to identify targets to dump LSASecrets on is to...

Buying Internal Domain Access Again

October 3, 2019
By Scot Berner in Penetration Testing, Security Testing & Analysis
So, this post is inspired by some very interesting research done by @mubix that you can read about here, as well as this amazing post by Tim Medin here. After reading Mubix’s post, I was whipped into a frenzy and purchased several domains. I realize that these posts are both several years old, but this idea has...

  • Search the blog

  • Search by Author

  • Browse by date

  • Browse by Category

  • Clear Form
14780 Pearl Road, Suite 300
Strongsville, OH 44136
1-877-550-4728
  • Follow TrustedSec on Twitter
  • Connect with TrustedSec on LinkedIn
  • Get TrustedSec's RSS feed

Get TrustedSec in your inbox

Sign up to receive the latest in cybersecurity news and resources

    By submitting this form, I agree to receive marketing communications from TrustedSec, which I can unsubscribe from at any time.

    This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.
    © Copyright 2021 by TrustedSec. All rights reserved.