braimee

As heard on 7MS #357

Windows command line shortcuts and tips:

Creative ways to play with cmd

Basically, you can do Windows Key + R then type cmd and Enter for quick access to command line.

But lets do some more fun stuff. Wanna open a command window from the desktop and launch a command in one swoop? Try this:

braimee

Low Hanging Hacker Fruit

This gist focuses on (relatively) free and (relatively) easy things organizations can do to better protect their networks without buying yet another black box with blinking lights.

Got some ideas of your own that should be on this list? Please leave a comment below!

Implementing a stronger AD password policy

Microsoft has a great paper on the topic that gives some nice high level recommendations:

• Use a unique password per site
• Enable complexity

braimee

Tired of recruiters pinging you about jobs that you don't care about or are under/overqualified for, but you'd like to utilize their time/skills/talent to find gigs you DO want? Customize this template and send it to them!

---

Hello,

Thanks for your email. The position you sent me is not a fit, however, here are some of the things I’d be looking for if I were to consider another position:

• A contract position would be my first choice, but I would go FTE for the right opportunity

braimee

Below is the cell phone agreement I have with my kids. It was largely inspired by this contract which had some excellent ideas.

---

Tweenager Cell Phone Responsibilities

• I understand that my cell phone is a privilege, not a right. Mom and dad can look at anything on my phone and take it away for any length of time and for any reason.

Quiet times

I will silence and put away or turn off my phone:

• At 7:30 p.m. each night, and I will put the phone on the charger upstairs

braimee

steampowered.com
steamcommunity.com
steamgames.com
steamusercontent.com
steamcontent.com
steamstatic.com
akamaihd.net

braimee

7 Minute Security Webinar Series

Below is a list of Webinars hosted by 7 Minute Security:

Upcoming Webinars:

More coming soon!

Past Webinars:

Dealing with Rejection: A DMARC Discussion

Thursday, August 20, 2020 @ 10:00 a.m. CST

braimee

Creating AD backup dump of user accounts and hashes

Upgrade to latest version of PowerShell

Check your version with:

$Psversiontable.psversion

If you are below Major: 5, Minor:1 head to Microsoft's download site to get the latest.

braimee

7 Minute Security podcast - full episode guide

Below is a blurb on each podcast episode, as well as a link to the corresponding show notes (if available). I apologize but this gist is often a little outdated, so to view the show notes for the latest episodes be sure to also check out 7ms.us.

---

393: Interview with Peter Kim

Today features the long-awaited interview with Peter Kim of The Hacker Playbook series!

View this episode's show notes for more information

braimee

Introduction

In episode 338 of the 7 Minute Security podcast, I talked about a recent engagement where I helped a customer do a bit of a SIEM solution bake-off. This gist is the companion to that episode, and is broken down into the following two sections:

• Questionnaire - a series of questions you can ask SIEM vendors to gather as many data points about their products and services as possible

• SIEM tests - a few tests you can conduct on your internal/external network to see if your SIEM solution indeed coughs up alerts on some things it should indeed whine about

Questionnaire

Introduction / Purpose

braimee

This document is under construction, but is intended to get you up and running quickly with cracking hashes in the cloud using the Paperspace service.

Resources used for this article:

• https://samiux.blogspot.com/2017/12/howto-install-hashcat-on-ubuntu-16043.html

• https://hashcat.net/wiki/doku.php?id=linux_server_howto

Setting up a cracking box using Paperspace