#S03EP08 Getting Domain Admin: Infrastructure Hacking | Prashant Mahajan

Guest: Prashant Mahajan, Director for Payatu Australia Pty Ltd and OzHackThe Cybersecurity landscape is driven by the increasing complexity and integration of systems. One major challenge is the proliferation of interconnected devices and platforms, which expand the attack surface and create numerous entry points for malicious actors. Additionally, the rapid adoption of cloud services and virtualization technologies introduces new vulnerabilities and requires robust security measures that are often inadequately implemented.Furthermore, the rise of sophisticated attack techniques, such as advanced persistent threats (APTs) and zero-day exploits, further complicates the defense mechanisms needed to protect infrastructure. Addressing these challenges requires a multi-faceted approach, including advanced threat detection, continuous monitoring, and enhanced collaboration across the cybersecurity community.In this episode we explore this through some very interesting stories from Prashant M. What can really go wrong in our IT infra and how attackers can leverage our assumptions.Recommended reading/viewing for practitioners:ADRecon:https://github.com/adrecon/ADReconhttps://github.com/adrecon/AzureADReconhttps://www.defcon.org/html/defcon-26/dc-26-demolabs.htmlhttps://www.blackhat.com/us-18/arsenal/schedule/index.html#adrecon-active-directory-recon-11912A few recommended books for getting into Pen Testing:The Web Application Hacker's Handbook: Finding and Exploiting Security FlawsThe Art of Software Security Assessment: Identifying and Preventing Software VulnerabilitiesNetwork Security Assessment: Know Your NetworkSilence on the Wire: A Field Guide to Passive Reconnaissance and Indirect Attacks by Michal ZalewskiTangled Web: A Guide to Securing Modern Web Applications by Michal ZalewskiBlack Hat Python, 2nd Edition: Python Programming for Hackers and Pentesters by Justin Seitz and Tim ArnoldThe Hacker Playbook 3: Practical Guide To Penetration TestingFollow us on LinkedIn: https://www.linkedin.com/company/breakpoint-security-podcastAudio on Buzzsprout: https://breakpoint.buzzsprout.comIf you like to see more like this, please Subscribe to Breakpoint Youtube! Please Share with others in the community. It always means a lot! Follow us on LinkedIn: @breakpoint-security-podcastAudio on Buzzsprout: https://breakpoint.buzzsprout.com Buzz me on Twitter or LinkedIn Connect with me on - Twitter: @NeeluTripathy LinkedIn: @neelutripathy

There are no comments yet.

Please log in to write the first comment.