Podchaser Logo
Charts
#S03EP08 Getting Domain Admin: Infrastructure Hacking | Prashant Mahajan

#S03EP08 Getting Domain Admin: Infrastructure Hacking | Prashant Mahajan

Released Tuesday, 29th October 2024
Good episode? Give it some love!
#S03EP08 Getting Domain Admin: Infrastructure Hacking | Prashant Mahajan

#S03EP08 Getting Domain Admin: Infrastructure Hacking | Prashant Mahajan

#S03EP08 Getting Domain Admin: Infrastructure Hacking | Prashant Mahajan

#S03EP08 Getting Domain Admin: Infrastructure Hacking | Prashant Mahajan

Tuesday, 29th October 2024
Good episode? Give it some love!
Rate Episode

Guest: Prashant Mahajan, Director for Payatu Australia Pty Ltd and OzHack

The Cybersecurity landscape is driven by the increasing complexity and integration of systems. One major challenge is the proliferation of interconnected devices and platforms, which expand the attack surface and create numerous entry points for malicious actors. Additionally, the rapid adoption of cloud services and virtualization technologies introduces new vulnerabilities and requires robust security measures that are often inadequately implemented.

Furthermore, the rise of sophisticated attack techniques, such as advanced persistent threats (APTs) and zero-day exploits, further complicates the defense mechanisms needed to protect infrastructure. Addressing these challenges requires a multi-faceted approach, including advanced threat detection, continuous monitoring, and enhanced collaboration across the cybersecurity community.

In this episode we explore this through some very interesting stories from Prashant M. What can really go wrong in our IT infra and how attackers can leverage our assumptions.

Recommended reading/viewing for practitioners:

ADRecon:

  • https://github.com/adrecon/ADRecon
  • https://github.com/adrecon/AzureADRecon
  • https://www.defcon.org/html/defcon-26/dc-26-demolabs.html
  • https://www.blackhat.com/us-18/arsenal/schedule/index.html#adrecon-active-directory-recon-11912


A few recommended books for getting into Pen Testing:

  • The Web Application Hacker's Handbook: Finding and Exploiting Security Flaws
  • The Art of Software Security Assessment: Identifying and Preventing Software Vulnerabilities
  • Network Security Assessment: Know Your Network
  • Silence on the Wire: A Field Guide to Passive Reconnaissance and Indirect Attacks by Michal Zalewski
  • Tangled Web: A Guide to Securing Modern Web Applications by Michal Zalewski
  • Black Hat Python, 2nd Edition: Python Programming for Hackers and Pentesters by Justin Seitz and Tim Arnold
  • The Hacker Playbook 3: Practical Guide To Penetration Testing


Follow us on LinkedIn: https://www.linkedin.com/company/breakpoint-security-podcast
Audio on Buzzsprout: https://breakpoint.buzzsprout.com

I would love to hear your suggestions and feedbacks, please DM me. If you liked this episode, please share with others in the community. It always means a lot!

If you’re interested in a security challenge that you’re facing or would like to hear from a specific speaker/team, let me know. Buzz me on Twitter or LinkedIn; checkout my handles below:

  • Twitter: @NeeluTripathy
  • LinkedIn: neelutripathy
Show More
Rate

Join Podchaser to...

  • Rate podcasts and episodes
  • Follow podcasts and creators
  • Create podcast and episode lists
  • & much more

Episode Tags

Do you host or manage this podcast?
Claim and edit this page to your liking.
,

Unlock more with Podchaser Pro

  • Audience Insights
  • Contact Information
  • Demographics
  • Charts
  • Sponsor History
  • and More!
Pro Features