STS Episode #2: Enjoying my break from the SANS fire hose

Show notes: https://seangoodwin.blog/sts002 SANS Whitepaper: https://www.sans.org/reading-room/whitepapers/detection/paper/39055 SANS Webinar: https://register.gotowebinar.com/register/603121010349954316 SANS ISC Stormcast Episode: https://isc.sans.edu/podcastdetail.html?id=6574 SEC 505: https://www.sans.org/course/securing-windows-with-powershell Orai: https://www.orai.com/ Python Crash Course (2nd edition): https://nostarch.com/pythoncrashcourse2e Show notes: https://seangoodwin.blog/sts002 Twitter: https://twitter.com/0xSeanG iTunes: https://podcasts.apple.com/us/podcast/stumbling-through-security/id1460066606 Spotify: https://open.spotify.com/show/68FkkuGPamw9dXi7UvQGGr Google Play: https://play.google.com/music/m/Ifs2tqq7eygukzq6q2atcsx3ibm YouTube: https://www.youtube.com/channel/UCPvejV6bXlkBCWergalHVfg

STS Episode #1: Keep It Simple [Sean]

I was lucky enough to get the reminder to K.I.S.S. on a recent engagement. While the latest TTPs can be very useful, it is important to keep "the basics" in mind. ARP Poisoning Guide: https://www.tutorialspoint.com/ethical_hacking/ethical_hacking_arp_poisoning.htm Ettercap: https://www.ettercap-project.org/ Bettercap: https://www.bettercap.org/ PCredz: https://github.com/lgandx/PCredz SMB Encryption: https://docs.microsoft.com/en-us/windows-server/storage/file-server/smb-security Detection of Arp Spoofing: https://www.comparitech.com/blog/vpn-privacy/arp-poisoning-spoofing-detect-prevent/ Show notes: https://seangoodwin.blog/sts001 Twitter: https://twitter.com/0xSeanG iTunes: https://podcasts.apple.com/us/podcast/stumbling-through-security/id1460066606Continue reading STS Episode #1: Keep It Simple [Sean]