Want to learn about all of the latest security tools and techniques? This is the show for you! We show you how to install, configure and use a wide variety of security tools for both offense and defense. Whether you are a penetration tester or defending enterprise networks, this show will help you!
This is the Hacker Summer Camp 2018 edition of Tradecraft Security Weekly. In this week's episode Beau Bullock (@dafthack) talks about some of the mor...
Organizations are implementing two-factor on more and more web services. The traditional methods for phishing credentials is no longer good enough to ...
In this episode of Tradecraft Security Weekly hosts Beau Bullock (@dafthack) and Mike Felch (@ustayready) discuss methods for evading network-based de...
It is fairly common for pentesters to discover Cross-Site Scripting (XSS) vulnerabilities on web application assessments. Exploiting these issues pote...
In this episode of Tradecraft Security Weekly, Mike Felch discusses with Beau Bullock about the possibilities of using framesets in MS Office document...
Google provides the ability to automatically add events to a calendar directly from emails received by Gmail. This provides a unique situation for phi...
Domain fronting is a technique used to mask command and control (C2) traffic. It is possible for C2 channels to be proxied through CDN's like Cloudfro...
If you are a penetration tester password cracking is something you will inevitably do. On most engagements we typically don't have months on end to cr...
On penetration tests we are often-times faced with very large external or internal attack surfaces that are made up of multiple web applications. When...
After exploiting a system on a remote & unfamiliar network it is extremely important to gain situational awareness as quickly, and quietly as possible...