Browse our blogs
We cover it all in The Security Blog. Discover what you’ve been looking for.
Back to Basics: The TrustedSec Guide to Strong Cyber Hygiene—Part 2
In the first Back to Basics blog we discussed cyber hygiene and some fundamental security practices one can take to quickly assess their current cybersecurity…
Cisco Hackery: How Cisco Configuration Files Can Help Attackers Enumerate Your Network
Compromising Cisco networks requires exploiting common misconfigurations, including TFTP and SNMP vulnerabilities, to download configuration files, establish a…
Common Conditional Access Misconfigurations and Bypasses in Azure
Conditional Access configurations in Azure prevent unauthorized access, but common misconfigurations and bypasses can occur, leading to security risks,…
Hardening Backups Against Ransomware
Recover from ransomware attacks with hardened, accessible, and scalable backups, essential for saving your organization from catastrophic financial and…
Working with data in JSON format
Discover how to work with JSON-formatted data using tools like gron, jless, and jq, and explore practical examples for filtering, parsing, and manipulating…
Watch Out for UUIDs in Request Parameters
Geoff Walton's UUID Watcher plugin identifies and correlates unique identifiers in HTTP requests, revealing potential IDOR vulnerabilities in web applications.
I Wanna Go Fast, Really Fast, like (Kerberos) FAST
Testing and verifying the effectiveness of Kerberos FAST for protection against offline dictionary attacks, a critical security feature for a defense-in-depth…
Practical Attacks against NTLMv1
Exploit NTLMv1 vulnerabilities to gain administrative access, leveraging authentication downgrade, LDAP relay, and Shadow Credentials attacks, with techniques…
How Your Team's Culture Determines the Value of Your Tabletop Exercise
Measuring the success of an organization's response to an incident involves assessing internal collaboration and cooperation, particularly through inter- and…
Video Blog: Using DLL Persist to Avoid Detection
https://youtu.be/t_bRTKf7Pfg During an Incident Response case, the TrustedSec IR team came across a novel method used by an attacker to maintain access to the…
The Crucial Role of Data Center Resiliency in Business Security
Expert data center resiliency assessment identifies and prioritizes critical issues to improve business continuity, providing actionable recommendations for…
Detection and Alerting: Selecting a SIEM
Customizable SIEM solution for mature detections, event correlation, and threat intelligence, with built-in reporting, analytics, and user behavior analytics,…
Loading...