CUI For the Rest of Us: The New Government-Wide CUI Protection Contract Clause
<p>U.S. government contractors need to start preparing for a proposed new government-wide Controlled Unclassified Information (CUI) protection requirement.</p>
TrustedSec
MCP: An Introduction to Agentic Op Support
6 days 2 hours ago
<p>1.1 IntroductionAgents and Large Language Models (LLMs) offer a powerful combination for driving automation. In this post, we’ll explore how to implement a straightforward agent that leverages the capabilities of…</p>
Brandon McGrath
Getting the Most Out of Your API Security Assessment
1 week ago
<p>Tips for what you can do in advance of an API Security Assessment to help us avoid delays and ensure the process runs smoothly and benefits everyone.</p>
Joe Sullivan
PCI DSS Payment Card Data Retention
1 week 2 days ago
<p>The Payment Card Industry Data Security Standard (PCI DSS) applies to and has specific requirements for retention of Account Data. In general, organizations must retain as little Account Data as they can for as short a…</p>
Chris Camejo
Trimarc Joins TrustedSec: Strengthening Our Commitment to Security
1 week 6 days ago
<p>Play We’re excited to share some big news: Trimarc Security is now fully operating under TrustedSec! This marks a significant step forward in our mission to provide real-world security guidance to help our partners…</p>
David Kennedy
Are Attackers "Passing Through" Your Azure App Proxy?
2 weeks 2 days ago
<p>TL;DR - Azure app proxy pre-authentication set to Passthrough may unintentionally expose private network resources.Microsoft’s Azure app proxy allows for publishing on-premises applications to the public without opening…</p>
Scott White
Are Attackers "Passing Though" Your Azure App Proxy?
2 weeks 2 days ago
<p>TL;DR - Azure app proxy pre-authentication set to Passthrough may unintentionally expose private network resources.Microsoft’s Azure app proxy allows for publishing on-premises applications to the public without opening…</p>
Scott White
Abusing Windows Built-in VPN Providers
3 weeks 2 days ago
<p>Some interesting things happen when you connect to a virtual private network (VPN). One that recently caught my interest is updates to the routing table. Normally, a non-administrative Windows user can’t modify the…</p>
Christopher Paschen
Measuring the Success of Your Adversary Simulations
4 weeks ago
<p>Adversary Simulations (“AdSim” or “Red Teams”) represent a serious commitment on the part of an organization. In the United States, AdSim engagements are typically not required by industry standards in the private…</p>
Jason Lang
The Hidden Trap in the PCI DSS SAQ A Changes
4 weeks 2 days ago
<p>Implementing requirements 6.4.3 and 11.6.1, or using a WAF to protect against script-based attacks, to meet PCI SSC's new eligibility criterion for SAQ A eCommerce merchants.</p>
Chris Camejo
A Threat Hunter’s Guide to Decoding the Cloud
1 month ago
<p>This blog will guide you through how to be a successful threat hunter in cloud environments, along with some helpful tips and advice.</p>
Caroline Fenstermacher
Exploring NTDS.dit – Part 1: Cracking the Surface with DIT Explorer
1 month 1 week ago
<p>NTDS.dit is the file housing the data for Windows Active Directory (AD). In this blog post, I’ll be diving into how the file is organized. I’ll also be walking through the new open-source tool DIT Explorer I developed…</p>
Alex Ball
Getting Started Using LLMs in Application Testing With an MVP
1 month 1 week ago
<p>Are you interested in incorporating Large Language Models (LLMs) into app tests yet lack the tooling to get you there? This blog walks through how to start using effective LLM attacks today.</p>
Geoff Walton
From RAGs to Riches: Using LLMs and RAGs to Enhance Your Ops
1 month 2 weeks ago
<p>1.1 IntroductionIn this blog, I will explore Retrieval-Augmented Generation (RAG) and how it can be applied to research capabilities. RAG is a framework that integrates retrieval-based models with generative AI to…</p>
Brandon McGrath
Operating Inside the Interpreted: Offensive Python
2 months 1 week ago
<p>Discover how to use Python for malicious purposes on Windows, leveraging its ease of installation and existing tradecraft to evade detection and deploy malware payloads effectively.</p>
Kevin Clark
Command Line Underdog: WMIC in Action
2 months 2 weeks ago
<p>My typical engagements are mostly Red Teams, so I do not often get a chance to play with terminal server application breakouts—but on a recent engagement, I did. For me, it was a great refresher on typical things to do…</p>
Oddvar Moe
Solving NIST Password Complexities: Guidance From a GRC Perspective
2 months 3 weeks ago
<p>Not another password change! Isn’t one (1) extra-long password enough? As a former Incident Response, Identity and Access Control, and Education and Awareness guru, I can attest that password security and complexity…</p>
Stephanie Saunders
Malware Series: Process Injection Mapped Sections
3 months 2 weeks ago
<p>We're back with another post about common malware techniques. This time, we are talking about using shared memory sections to inject and execute code in a remote process. This method of process injection uses Windows…</p>
Scott Nusbaum
Top 10 Blogs of 2024
3 months 2 weeks ago
<p>At TrustedSec, we are all about leveraging our collective intelligence and knowledge to uplift the cybersecurity community. One of our most popular educational outlets is The Security Blog, where our experts divulge…</p>
TrustedSec
On-Demand BOF
3 months 4 weeks ago
<p>From the team that brought you COFF Loader, CS-Situational-Awareness-BOF, CS-Remote-OPs-BOF, and numerous blogs on BOFs, we are excited to release our first on-demand class: Building BOFs. TrustedSec has had private…</p>
Justin Elze
Checked
7 hours 25 minutes ago