Skip to content

Instantly share code, notes, and snippets.

Avatar

Brian Johnson braimee

View GitHub Profile
@braimee
braimee / WindowsCommandLineShortcutsAndTips.md
Created Apr 25, 2019
Windows command line shortcuts and tips
View WindowsCommandLineShortcutsAndTips.md

As heard on 7MS #357

Windows command line shortcuts and tips:

Creative ways to play with cmd

Basically, you can do Windows Key + R then type cmd and Enter for quick access to command line.

But lets do some more fun stuff. Wanna open a command window from the desktop and launch a command in one swoop? Try this:

@braimee
braimee / lowhanging.md
Last active Feb 26, 2020
Low-hanging hacker fruit (and how to remove it)
View lowhanging.md

Low Hanging Hacker Fruit

This gist focuses on (relatively) free and (relatively) easy things organizations can do to better protect their networks without buying yet another black box with blinking lights.

Got some ideas of your own that should be on this list? Please leave a comment below!

Implementing a stronger AD password policy

Microsoft has a great paper on the topic that gives some nice high level recommendations:

  • Use a unique password per site
  • Enable complexity
@braimee
braimee / LinkedIn_recruiter_response_template.md
Last active Mar 10, 2020
Tired of recruiters pinging you about positions you aren't interested in *BUT* you'd like to utilize their time/skills/talent to find gigs you DO want? Send this template to them!
View LinkedIn_recruiter_response_template.md

Tired of recruiters pinging you about jobs that you don't care about or are under/overqualified for, but you'd like to utilize their time/skills/talent to find gigs you DO want? Customize this template and send it to them!


Hello,

Thanks for your email. The position you sent me is not a fit, however, here are some of the things I’d be looking for if I were to consider another position:

  • A contract position would be my first choice, but I would go FTE for the right opportunity
@braimee
braimee / Tweenager_cell_phone_contract.md
Last active Apr 7, 2020
Tweenager Cell Phone Contract
View Tweenager_cell_phone_contract.md

Below is the cell phone agreement I have with my kids. It was largely inspired by this contract which had some excellent ideas.


Tweenager Cell Phone Responsibilities

  • I understand that my cell phone is a privilege, not a right. Mom and dad can look at anything on my phone and take it away for any length of time and for any reason.

Quiet times

I will silence and put away or turn off my phone:

  • At 7:30 p.m. each night, and I will put the phone on the charger upstairs
@braimee
braimee / piholeblock.txt
Created Jun 10, 2020
PiHole test block list
View piholeblock.txt
steampowered.com
steamcommunity.com
steamgames.com
steamusercontent.com
steamcontent.com
steamstatic.com
akamaihd.net
@braimee
braimee / 7MS_Webinar_Series.md
Last active Aug 27, 2020
7 Minute Security Webinar Series
View 7MS_Webinar_Series.md

7 Minute Security Webinar Series

Below is a list of Webinars hosted by 7 Minute Security:

Upcoming Webinars:

More coming soon!

Past Webinars:

Dealing with Rejection: A DMARC Discussion

Thursday, August 20, 2020 @ 10:00 a.m. CST

@braimee
braimee / Active_Directory_dump_n_crack.md
Last active Nov 3, 2020
Active Directory hash dump n' crack methodology
View Active_Directory_dump_n_crack.md

Creating AD backup dump of user accounts and hashes

Upgrade to latest version of PowerShell

Check your version with:

$Psversiontable.psversion

If you are below Major: 5, Minor:1 head to Microsoft's download site to get the latest.

@braimee
braimee / 7MS_episode_guide.md
Last active Dec 10, 2020
7 Minute Security podcast episode guide
View 7MS_episode_guide.md

7 Minute Security podcast - full episode guide

Below is a blurb on each podcast episode, as well as a link to the corresponding show notes (if available). I apologize but this gist is often a little outdated, so to view the show notes for the latest episodes be sure to also check out 7ms.us.


393: Interview with Peter Kim

Today features the long-awaited interview with Peter Kim of The Hacker Playbook series!

View this episode's show notes for more information

@braimee
braimee / SIEMple_SIEM_questionnaire_and_tests.md
Last active Dec 26, 2020
Some simple security tests you can run to test the effectiveness of your SIEM
View SIEMple_SIEM_questionnaire_and_tests.md

Introduction

In episode 338 of the 7 Minute Security podcast, I talked about a recent engagement where I helped a customer do a bit of a SIEM solution bake-off. This gist is the companion to that episode, and is broken down into the following two sections:

  • Questionnaire - a series of questions you can ask SIEM vendors to gather as many data points about their products and services as possible

  • SIEM tests - a few tests you can conduct on your internal/external network to see if your SIEM solution indeed coughs up alerts on some things it should indeed whine about

Questionnaire

Introduction / Purpose

@braimee
braimee / Password_cracking_in_the_cloud.md
Last active Feb 13, 2021
Password cracking in the cloud
View Password_cracking_in_the_cloud.md