Security in Focus

Tech Update - Patting the Printer for Credentials

An internal penetration test is often a simulation of a malicious insider or an attack within the LAN, from the perspective of a compromised workstation. In the past, a ...
READ MORE

Tech Update - RidRelay: Getting AD Usernames by Relaying With Low ...

Every week, Content Security is engaged to do Internal Penetration Tests. We go in and find ourselves on a totally unknown network, usually with thousands of hosts and ...
READ MORE

Cybersecurity in Healthcare

Cybersecurity in the healthcare sector is very challenging. Health organisations have large segregated networks with interconnected medical devices that are often ...
READ MORE

Tech Update - Why protecting backups is important

In a recent penetration testing engagement, I stumbled upon Microsoft SQL backups, on an unauthenticated iSCSI target. It got me thinking “what can I do with these ...
READ MORE

Red Teaming vs Penetration Testing - What’s the Difference?

Traditional penetration testing is crucial to security, but can be limited due to time and scope constraints. In comparison, Red Team campaigns seek to remove this ...
READ MORE