This is part of the Palo Posts how-to guides for getting the most from your Palo Alto firewall on a home or small business network. My very own Palo Alto! I’m a big fan of Palo Alto Networks firewalls due to their focus on security …
In the security world, the CISSP is the gold standard certification for information security professionals. The exam is incredibly broad covering a number of domains. However, over the course of my career I’ve realized that there’s a key domain that’s missing. Oh really, Eric? And what …
Introduction I’ve spent most of my career defending environments of all sizes. What I’ve found is that the job of a defender is much less flashier and thankless as compared to an “ethical hacker.” While there are volumes of articles, guides, and talks on penetration …
The Fun Stuff: Privilege Escalation, Exfiltration, and Persistence This is part of a series of posts that walk through an attack. To start from the beginning, click here. In the last post, we successfully exploited our Victim using a client-side attack targeting an old version of Microsoft …
Last year, I wrote a couple articles on how to integrate Tripwire IP360 data into Splunk. These turned out to be very popular, with a number of folks reaching out to me for a copy of my IP360 Tools script that made all the magic …
Exploitation: Client-side Attack This is part of a series of posts that walk through an attack. To start from the beginning, click here. In the last post, we performed some basic reconnaissance on our target machine and determined its operating system, running services, and even what browser …
Reconnaissance: Know Your Target This is part of a series of posts that walk through an attack. To start from the beginning, click here. In the last post, we got a brief overview of Kali Linux and some of its capabilities. In this part, we’ll start …
Seeing Red This is part of a series of posts that walk through an attack. In an ideal world, information security teams are comprised of both a dedicated Red Team (attackers or offensive side) and a Blue Team (incident responders or defensive side). I’ve never …