Audio is streamed directly from the publisher (traffic.libsyn.com) as published in their RSS feed. Play Podcasts does not host this file. Rights-holders can request removal through the copyright & takedown page.
Show Notes
Today's tale of pentest pwnage is another great one! We talk about:
- The SPNless RBCD attack (covered in more detail in this episode)
- Importance of looking at all "branches" of outbound permissions that your user has in BloodHound
- This devilishly effective MSOL-account-stealing PowerShell script (obfuscate it first!)
- A personal update on my frustration with ringing in my ears