Are all IT admins cave-dwelling gnomes? On today's episode of #SecurityNoise, we get together around a virtual campfire to tell some funny and scary InfoSec stories straight from the battle field! Watch on YouTube or listen wherever you get your podcasts. hubs.la/Q02-DT-q0

We are excited to sponsor CactusCon this year! The event will be held on February 14-15 in Mesa, AZ and three of our consultants will be giving talks. Make sure to visit our booth and come chat with our team if you'll be there! #CC13 hubs.la/Q035qfrn0

Senior Security Consultant whitney🧜🏽‍♀️ will be speaking at CactusCon next week! Her talk will take place on Feb 14 at 11am in the Career Village. Stop by our booth too if you'll be there! hubs.la/Q035NCXp0

Looking forward to this conference, see you nerds in the desert.

This Saturday, Principal Security Consultant Justin Bollinger @ DEFCON will be presenting "EKUwu - Not Just another AD CS ESC" CactusCon! His talk will take place at 10:30am on Track 1. Don't miss it and make sure to stop by our booth if you'll be there! hubs.la/Q035Psf80

Money wasted on security? $0.00 😂 waste.gov

The TrustedSec crew is having a great time CactusCon in Arizona! Make sure to stop by our booth to chat if you're around 🌵

Check out my latest blog post on how the NTDS.dit file is used by Active Directory, and my accompanying tool, DIT Explorer, for browing the data contained within NTDS.dit. Blog post: trustedsec.com/blog/exploring… DIT Explorer on Github: github.com/trustedsec/Dit…

Dunno why everyone is doom and gloom over the economy. Trump promised to bring down inflation and stocks are already way cheaper now that he's in office.

Joining forces will enhance our ability in hardening identity security, fortifying Microsoft cloud environments & preventing advanced attacks. Read more! 👉 trustedsec.com/about-us/news/…

I just pushed my private JS-Tap repo changes over to public for v2.2 release. Network obfuscation, rendering improvements, reverse filter searching, and fixed client fingerprinting. Release notes: github.com/hoodoer/JS-Tap… Repo: github.com/hoodoer/JS-Tap

jfc

Take a peek inside Smiley's Toolbox next week! Join us for a livestream on Discord with Drew @hoodoer on April 24. He will demo his tool JS-Tap and go over new updates. Find his JS-Tap blog and the Discord invite on our website! trustedsec.com/about-us/event…

Join us tomorrow for a Discord Livestream with Drew @hoodoer! Drew will be doing a demo of his JS-Tap tool and showing the new updates. Set a reminder for 11am ET/10am CT so you don't miss it! #JSTap #RedTeam #Discord #Livestream trustedsec.com/about-us/event…

I use "what's my IP" sites a ton to check my routing, got tired of bloated sites. Made a simple service for this: checkip.sh or checkip.sh/?ip=8.8.8.8 Works well on the command line (-L needed): curl -L checkip.sh/cli or curl -L checkip.sh/cli?ip=8.8.8.8

Learn how you can give your TLS an added layer of protection! In our new blog, Drew @hoodoer demonstrates a few methods on how to use Web Crypto API to enhance your data security. Read it now! trustedsec.com/blog/applicati…

I'm excited to be presenting Sickle at Arsenal at Black Hat USA 2025, to join me click here app.ingo.me/q/3n4vn #BHUSA. I'm really looking forward to meeting all of you!

AI’s got the old tricks down; what else it can do? In this blog, James 🏴󠁧󠁢󠁷󠁬󠁳󠁿 shows how an MCP server enables Claude to analyze .NET assemblies, exploit a known vulnerability, and create a working proof-of-concept for a potential attack path. Read now! trustedsec.com/blog/hunting-d…

This is a pretty fun trick to get a NTLM hash. I think this API is a tad over featured.