King of the douchebags

cme nxc now and yeah learned a new things about crackmapexec :) thanks!

KP a Week

I miss DHA and 0dayallday. I need to start attending again.

:D we love you Justin

1. It is not for you to determine what is extremely anything 2. You UPSPEAK - STOP IT and people will take you seriously then

Oh just $20?

Oh shotguns can hurt people? Thanks for the news flash

Amazing content, just sat here binge watching! Make more please

Awesome

Gimmicky crap I just wasted 36 bucks for 3 shells that birdshot beats

*Promosm*

Hey there awesome video! What is the terminal you are using??? Or theme I like those icons

Britt Howell get it!

if you know seed is datetime could you use this to reverse enginer a slot machine?

Only partway through, but it was so crazy, I was just reading a post by RastMouse before I came here to learn more about using Sliver with C2 BOFs :)

What is the terminal you are using??? Or theme I like those icons

Excellent video. Thanks for posting. Could you provide the HTB link for the double hop explanation as shown @52:11 into the video? I am subscribed Thanks.

What is the effective range of these rounds! A shotgun round that could hurt someone, as you sure?

People who knows antennas and how to make high gain directional antennas

great video but i have a question can't we just disable the EDR when we want to exexcute the agent and then reenable after our agent ran

I just wanted to say thanks very much. Currently studying OSEP, which is an incredible course. I was trying to decide which framework to use for the extra mile exercise and you have definitely swung it for Sliver.

Really interesting, thanks Ben!

is there any discord channel where we can interact with the development team?

Please make More vd advanced techniques red team

i team i am jeeva from india one day i will join your team

Here's the corresponding blog post. Thanks for watching! bfx.social/418m7sh

Is about OSCP or OSEP? Bcs, we see "OSEP" in title but video content targeted OSCP. Am I wrong?

Great work! Btw it looks like CME was exporting the AS-REP user hash as AES-256 as the hash encryption type is tgs$18$ so you wouldn’t likely crack it. Kerbrute is requesting the hash as tgs$23$ which is the older RC4 encryption and much weaker/faster to crack.

More more more. John has a fantastic talent at explaining things!

Very informative and awesome show, I will be watching and learning more on my quest on Ethical Hacking. Thank you so much Bishop Fox and Defcon!!!!

This is awesome, ive got my exam scheduled and will be using sliver!

Please update your tool

Amazing content, this is a blessing! Thank you so much!

For the person who asked how to transition from pen testing into red teaming, Trevin had this to say: "Penetration testing as a background is one of the most natural paths towards red teaming that exists. Key in that evolution is being able to switch your approach and mindset from web-app only focus or network-only focus and towards "end result focus" and relaxing the restrictions on the "how" that is accomplished. After all, a wire transfer can be accomplished not just through a vulnerability in SWIFT, but also through elicitation of human beings, or even physical building compromises potentially. My suggestion for penetration testers wanting to move into Red Teaming would be to 1) focus on doing similar activities but doing them stealthily...finding ways to create payloads that will stay under the radar of common EDR products, and how to perform network scanning/enumeration in ways that are stealthy and will avoid detection. 2) seek to gain expertise in either social or physical red teaming, as a complement to their existing web or network based penetration testing skillset. Also, 3) understand the mindset and approach of blue team. What tooling do they typically use, how do they respond to key alerts. That is important in knowing how to pressure test those approaches." Hope this helps!

is there a way to use this without knowing the font or the size

TomNomNom just seems like such a genuinely good human being. His was of thinking and describing things is just truly pleasant.

Kristin paget is actually a guy Chris Paget. Not sure how you mess that up LOL

Just wanted to say this was excellent. Please more of this content.

Thx for this ! this is exactly what i needed sir !

brilliant!! after just catching the end of the 3 guests chattting re: "kubernetes containers VS security of os particulars/hiring interview question: Uhave a lab? takeaway being atleast hgave one till youm (if erver) feel don't NEED one".Cann't wait to rewatch then catcvh w/e is streaming in th hour after that . foingerss crossed its not just 75 mins of UP NEXT as it is an archive of planned live streams during deRfcon ;]

This has been refreshing.

how to buy

really good conversation, thank you

I didn’t even know that I had his book until I saw the reference on this video…lol. I got it a while back and saw him speak a few times at GrrCon (even got into a little argument with him at the 2021 GrrCon).

🥰

i wish i could go to defcon

very slow attack

Wish I could be there

Is this def con or a shitty podcast?