banner
LightNews
nullbind.bsky.social
Scott Sutherland
@nullbind.bsky.social
57 followers 73 following 3 posts
Posts Media Videos Starter Packs
nullbind.bsky.social
Scott Sutherland @nullbind.bsky.social · Apr 2
I had a great time at #socon2025! Big thanks to the SpecterOps crew for hosting. Slides for my "Hunting SMB Shares" talk are below for those who are interested.

Slides
github.com/NetSPI/Power...

PowerHuntShares
github.com/NetSPI/Power...
2 3
Reposted by Scott Sutherland
kfosaaen.bsky.social
Karl Fosaaen @kfosaaen.bsky.social · Jan 8
And here's a link to the blog - www.netspi.com/blog/technic...
Hijacking Azure Machine Learning Notebooks (via Storage Accounts)
Abusing Storage Account Permissions to attack Azure Machine Learning notebooks
www.netspi.com
1 2
Reposted by Scott Sutherland
kfosaaen.bsky.social
Karl Fosaaen @kfosaaen.bsky.social · Jan 8
In addition to the blog out today, there's a new tool in MicroBurst - Get-AzMachineLearningCredentials
This one has been in the works for a while, but it's a tool to dump the credentials that are stored by the Azure Machine Learning service. github.com/NetSPI/Micro...
MicroBurst/Az/Get-AzMachineLearningCredentials.ps1 at master · NetSPI/MicroBurst
A collection of scripts for assessing Microsoft Azure security - NetSPI/MicroBurst
github.com
1 3 5
Reposted by Scott Sutherland
specterops.io
SpecterOps @specterops.io · Nov 29
Today is #BloodHoundBasics Day! 🙌

We commonly see Domain Admins peppered across Organizational Units. This can degrade your security posture by making Group Policy enforcement hard to understand or audit.

BloodHound helps by visualizing BOTH the OU placement AND group membership.

🧵 1/2
1 1 9
nullbind.bsky.social
Scott Sutherland @nullbind.bsky.social · Nov 28
Oops, bad link, fixed: raw.githubusercontent.com/NetSPI/Power...
nullbind.bsky.social
Scott Sutherland @nullbind.bsky.social · Nov 28
PowerHuntShares.v2: New Sample HTML Report
Here is a sample report for those who wanted it. Enjoy!
raw.githubusercontent.com/NetSPI/PowerHu…
1 1 1
Reposted by Scott Sutherland
russelvantuyl.bsky.social
Russel Van Tuyl @russelvantuyl.bsky.social · Nov 22
This State of Generative AI report from Menlo Ventures provided some good insights on where cybersecurity professionals might look for risk in terms of assessments and research.

menlovc.com/2024-the-sta...
2024: The State of Generative AI in the Enterprise - Menlo Ventures
The enterprise AI landscape is being rewritten in real time. We surveyed 600 U.S. enterprise IT decision-makers to reveal the emerging winners and losers.
menlovc.com
2 1 2
Reposted by Scott Sutherland
andyrobbins.bsky.social
Andy Robbins @andyrobbins.bsky.social · Nov 19
I couldn't find any PowerShell examples of encrypting/decrypting data w/ Azure Key Vault keys, so I made some:

Protect-StringWithAzureKeyVaultKey
Unprotect-StringWithAzureKeyVaultKey

github.com/BloodHoundAD...

Explanatory blog post coming soon.
Add key vault cryptographic op funcs · BloodHoundAD/BARK@e1c82a1
github.com
1 6 17