Leaking Windows Creds Externally Via MS Office – Tradecraft Security Weekly #21

December 1, 2017

In this episode of Tradecraft Security Weekly, Mike Felch discusses with Beau Bullock about the possibilities of using framesets in MS Office documents to send Windows password hashes remotely across the Internet. This technique has the ability to bypass many common security controls so add it to your red team toolboxes. Mike Felch (@ustayready) Beau Bullock (@dafthack) LINKS: SensePost Blog - https://www.dropbox.com/s/hmna48mc6qodlrw/TSW%20Episode%2021.mp4?dl=0

View Show Index

Full Audio

Security awareness

TikTok, GitHub, CISA, More CISA, a Little More CISA, Netgear, & DoKwon – SWN #283

March 24, 2023

This week Dr. Doug talks: TikTok, Github, CISA and More CISA, Netgear, Do Kwon and More on this episode of the Security Weekly News.

Incident response

AI Hires Humans to Solve Captcha, Amazing Drones, & Buzzword Bingo 2023 Edition – ESW #310

March 23, 2023

This week in the Enterprise News: Dope Security nabs $16M led by GV to build out secure web gateways designed to work on endpoints, not in the cloud. We take the mystery out of some recent funding. Microsoft 365's Copilot tries to do your job for you. Mapping failures with decision trees. An AI hires a human to solve a CAPCHA, because it needed hel...

Privacy

Bringing Transparency and Security to IoT with ioXt – Grace Burkard – ESW #310