Tradecraft Security Weekly

From Paul's Security Weekly
Jump to: navigation, search

Previously Recorded

Episode #29 - Evilginx2 Man-in-the-Middle Attacks

Episode #28 - Black Hat & DEF CON 2018

Episode #27 - PXE Boot Attacks

Episode #26 - OSINT & External Recon Pt. 2: Contact Discovery

Episode #25 - Phishing 2FA Tokens with CredSniper

Episode #24 - Evading Network-Based Detection Mechanisms

Episode #23 - HTML5 Storage Exfil via XSS

Episode #22 - Linux Privilege Escalation

Episode #21 - Leaking Windows Creds Externally Via MS Office

Episode #20 - Google Event Injection

Episode #19 - Dissecting XXE Attacks

Episode #18 - Domain Fronting

Episode #17 - Cracking Password Hashes Efficiently

Episode #16 - Pivoting Tools Through Meterpreter

Episode #15 - Identifying Weak Session Tokens Using Entropy

Episode #14 - Relaying NTLMv1/v2

Episode #13 - Black Hat & DEF CON 2017

Episode #12 - Automating Screenshots to Quickly Assess Many WebApps

Episode #11 - Sensitive Data in Email with MailSniper

Episode #10 - Live Response with Google Rapid Response (Blue Team Edition)

Episode #09 - Command & Control 101: Transports

Episode #08 - OSINT & External Recon Pt. 1 - Host Discovery

Episode #07 - Situational Awareness with HostRecon

Episode #06 - WordPress Vulnerability Discovery and Exploitation

Episode #05 - Password Spraying Windows Active Directory Accounts

Episode #04 -Meterpreter with Categorized Domains & Trusted Certs

Episode #03 - Attacking Exchange/OWA to Gain Access to AD Accounts

Episode #02 - Windows Privilege Escalation Techniques (Local)

Episode #01 - Public File Metadata Analysis