We did something crazy today and recorded an episode that was 7 minutes long!  Today we talk about some things that have helped us out in recent pentests: <ul> <li>When using <a href= "https://www.mdsec.co.uk/2021/02/farming-for-red-teams-harvesting-netntlm/" target="_blank" rel="noopener">Farmer</a> to create “trap” files that coerce authentication, I’ve found way better results using Windows Search Connectors (.searchConnector-ms) files</li> <li>This <a href= "https://www.thehacker.recipes/a-d/movement/ntlm/relay" target= "_blank" rel="noopener">matrix</a> of “can I relay this to that” has been super helpful, especially early in engagements</li> </ul>

<description>&lt;p&gt;We did something crazy today and &lt;em&gt;recorded an episode that was 7 minutes long!  &lt;/em&gt;Today we talk about some things that have helped us out in recent pentests:&lt;/p&gt; &lt;ul&gt; &lt;li&gt;When using &lt;a href= "https://www.mdsec.co.uk/2021/02/farming-for-red-teams-harvesting-netntlm/" target="_blank" rel="noopener"&gt;Farmer&lt;/a&gt; to create “trap” files that coerce authentication, I’ve found way better results using Windows Search Connectors (&lt;em&gt;.searchConnector-ms&lt;/em&gt;) files&lt;/li&gt; &lt;li&gt;This &lt;a href= "https://www.thehacker.recipes/a-d/movement/ntlm/relay" target= "_blank" rel="noopener"&gt;matrix&lt;/a&gt; of “can I relay &lt;em&gt;this&lt;/em&gt; to &lt;em&gt;that&lt;/em&gt;” has been super helpful, especially early in engagements&lt;/li&gt; &lt;/ul&gt;</description>

We did something crazy today and recorded an episode that was 7 minutes long!  Today we talk about some things that have helped us out in recent pentests:  When using  to create “trap” files that coerce authentication,...

7 Minute Security

7MS #619: Tales of Pentest Pwnage – Part 56

7MS #619: Tales of Pentest Pwnage – Part 56

Description