Browse our blogs
We cover it all in The Security Blog. Discover what you’ve been looking for.
ESXiArgs: What you need to know and how to protect your data
Vulnerable ESXi servers are at risk from the ESXiArgs ransomware campaign; patch or upgrade immediately to prevent data loss.
The First Steps on the Zero Trust Journey
Discover the Zero Trust journey and learn how to implement a robust security program with Jamie Alberts, expert in business risk assessment and security…
What this KeePass CVE means for organizations searching for new password vaults
https://youtu.be/OEaFaSjaZY4 After the 2022 LastPass breach, many organizations began searching for alternative password vault solutions. KeePass, a legacy…
How Threat Actors Use OneNote to Deploy ASyncRAT
Discover how threat actors use OneNote to deploy ASyncRAT, an open-source remote admin tool, and learn how to detect and block these phishing attacks.
New Attacks, Old Tricks: How OneNote Malware is Evolving
Malware authors exploit OneNote's file execution feature to download and execute malicious scripts, posing a phishing threat to users, warning users to…
Operator's Guide to the Meterpreter BOFLoader
Unlock Meterpreter's full potential with the BOFLoader, elevating it to a modern C2 payload, and discover its capabilities for dynamic functionality addition,…
Major Conference Roundup: Perspectives from Defcon, RSA, Black Hat, Gartner, and more!
The 2022 conference schedule ramped up in the second half of the year, and as you might expect, TrustedSec both attended and spoke at many of them. Within our…
2023 Resolutions for Script Kiddies
Don't rely on being alt, use multifactor authentication and stay current with software updates to protect against evolving threats in 2023.
A LAPS(e) in Judgement
Building Splunk queries to detect LAPS (Local Administrator Password Solution) attacks using Windows Security Log events, enabling enhanced logging and…
To OOB, or Not to OOB?: Why Out-of-Band Communications are Essential for Incident Response
Establish a secure, temporary communication system for emergency situations, ensuring continuity and integrity during organization-wide incidents.
Building a Strong Foundation With the Information Security Accelerator
TrustedSec's Information Security Accelerator creates a tailored 12-18 month roadmap, practical guidance, and hands-on implementation to protect against 77% of…
More Active Directory for Script Kiddies
Learn how to easily exploit Active Directory for Script Kiddies, a guide to AD enumeration and hacking tools, with TrustedSec.
Loading...