527 episodes

7 Minute Security is a weekly information security podcast focusing on penetration testing, blue teaming and building a career in security. The podcast also features in-depth interviews with industry leaders who share their insights, tools, tips and tricks for being a successful security engineer.

7 Minute Security Brian Johnson

    • Technology
    • 4.7 • 63 Ratings

7 Minute Security is a weekly information security podcast focusing on penetration testing, blue teaming and building a career in security. The podcast also features in-depth interviews with industry leaders who share their insights, tools, tips and tricks for being a successful security engineer.

    7MS #527: First Impressions of Purple Knight

    7MS #527: First Impressions of Purple Knight

    In today's episode we talk about Purple Knight, a free tool to help assess your organization's Active Directory security. I stuck Purple Knight in our Light Pentest LITE pentest training lab and did an informal compare-and-contrast of its detection capabilities versus PingCastle, which we talked about in depth in episode #489. 

    • 52 min
    7MS #526: Tales of Pentest Pwnage - Part 37

    7MS #526: Tales of Pentest Pwnage - Part 37

    Today's another fun tale of pentest pwnage - specifically focused on cracking a hash type I'd never paid much attention to before: cached domain credentials. I also learned that you can at least partially protect against this type of hash being captured by checking out this article, which has you set the following setting in GPO:
    Under Computer Configuration > Policies > Windows Settings > Security Settings > Local Policies > Security Options set Interactive logon: Number of previous logons to cache to 0. Be careful, as you will have login problems if a domain controller is not immediately accessible! In regards to defending against secretsdump, this article I found this article to be super interesting.

    • 34 min
    7MS #525: First Impressions of InsightIDR - Part 2

    7MS #525: First Impressions of InsightIDR - Part 2

    Today we're sharing an updates to episode #512 where we ran Rapid7's InsightIDR through a bunch of attacks: Active Directory enumeration via SharpHound
    Password spraying through Rubeus
    Kerberoasting and ASREPRoasting via Rubeus
    Network protocol poisoning with Inveigh. Looking for a free way to detect protocol poisoning? Check out CanaryPi.
    Hash dumping using Impacket. I also talk about an interesting Twitter thread that discusses the detection of hash dumping.
    Pass-the-hash attacks with CrackMapExec
    In today's episode I share some emails and conversations we had with Rapid7 about these tests and their results. I'm also thrilled to share with you the articles themselves:
    Getting Started with Rapid7 InsightIDR: A SIEM Tutorial Testing & Evaluating SIEM Systems: A Review of Rapid7 InsightIDR

    • 33 min
    7MS #524: How to Update VMWare ESXi From the Command Line

    7MS #524: How to Update VMWare ESXi From the Command Line

    I'm extra psyched today, because today's episode (which is all about updating your VMWare ESXi version via command line) is complemented by video:

    https://www.youtube.com/watch?v=0-XAO32LEPY
    Shortly after recording this video, I found this awesome article which walks you through a different way to tackle these updates:
    List all upgrade profiles: esxcli software sources profile list --depot=https://hostupdate.vmware.com/software/VUM/PRODUCTION/main/vmw-depot-index.xml Grep for just the ones you want (in my case ESXi 7.x): esxcli software sources profile list --depot=https://hostupdate.vmware.com/software/VUM/PRODUCTION/main/vmw-depot-index.xml | grep -i ESXi-7.0 Apply the one you want! esxcli software sources profile list --depot=https://hostupdate.vmware.com/software/VUM/PRODUCTION/main/vmw-depot-index.xml | grep -i ESXi-7.0
     
     

    • 33 min
    7MS #523: Local Administrator Password Solution - RELOADED!

    7MS #523: Local Administrator Password Solution - RELOADED!

    Well friends, it has been a while since we talked about Microsoft's awesome Local Administrator Password Solution - specifically, the last time was way back in 2017! Lately I've been training some companies on how to install it by giving them a live walkthrough in our Light Pentest LITE lab, so I thought it would be a good time to write up a refreshed, down and dirty install guide. Here we go!
    (See the show notes for today's episode for more details!)

    • 38 min
    7MS #522: Pwning Wifi PSKs and PMKIDs with Bettercap - Part 2

    7MS #522: Pwning Wifi PSKs and PMKIDs with Bettercap - Part 2

    Hey friends, a while back in episode #505 we talked about pwning wifi PSKs and PMKIDs with Bettercap. Today I'm revisiting that with even some more fun command line kung fu to help you zero in on just the networks you're interested in and filter out a bunch of noisy events from bettercap in the process.

    • 35 min

Customer Reviews

4.7 out of 5
63 Ratings

63 Ratings

Nebblkshts ,

Awesome

I thought I knew a few things about being a windows admin until Brian showed me a new world. I was board with where I was now I want to move into security.

CyberSecPodFan ,

Some gems, getting rare though

A while ago this podcast was a must listen, but now between all the ad sponsored interviews and news summaries it isn’t on my list anymore. The news episodes with Joe are usually dated and much less interesting than what you’d find from BHIS or RiskyBiz. The tales of pentest pwnage are still pretty good but the rest…meh. Hopefully his business advisers help him course correct soon.

Choppers17 ,

Become too political

I persisted through all the quirkiness of the podcast but Brian has recently saw fit to become political on his podcast. Not what I came here for. Bye!

Top Podcasts In Technology

Lex Fridman
Jason Calacanis
NPR
Jack Rhysider
PJ Vogt
Gimlet

You Might Also Like

CyberWire, Inc.
Johannes B. Ullrich
CISO Series
Cybereason
CyberWire Inc.
Graham Cluley, Carole Theriault