Tim Medin
@timmedin.bsky.social
Kerberoast Guy • RedSiege CEO • Hater of Pants • Former SANS 560 Author, Senior Instructor • Packers owner • Work Req: http://redsiege.com/contact
I'm home after teaching Offense for Defense at NineStart Connect. They offered free (yes, free) training to whomever wanted to attend. I can't thank them enough for offering this to our community!
The class is available here: training.redsiege.com (affordable, not free... sorry you missed out 😉)
The class is available here: training.redsiege.com (affordable, not free... sorry you missed out 😉)
November 14, 2025 at 3:03 PM
I'm home after teaching Offense for Defense at NineStart Connect. They offered free (yes, free) training to whomever wanted to attend. I can't thank them enough for offering this to our community!
The class is available here: training.redsiege.com (affordable, not free... sorry you missed out 😉)
The class is available here: training.redsiege.com (affordable, not free... sorry you missed out 😉)
Wrapping up @defcon.bsky.social Bahrain at the ICS Village.
Not my best picture, but excellent photo bomb.
Not my best picture, but excellent photo bomb.
November 6, 2025 at 12:01 PM
Wrapping up @defcon.bsky.social Bahrain at the ICS Village.
Not my best picture, but excellent photo bomb.
Not my best picture, but excellent photo bomb.
Damn.
I’m never going to find this room.
I’m never going to find this room.
October 24, 2025 at 11:14 PM
Damn.
I’m never going to find this room.
I’m never going to find this room.
Two days of teaching Pen Testing: Beyond the Basics ✅
Two hour Kerberos workshop ✅
Talk ✅
Tomorrow, time to be a full time booth babe.
Two hour Kerberos workshop ✅
Talk ✅
Tomorrow, time to be a full time booth babe.
Putting a bow on the day at @wildwesthackinfest.bsky.social with CEO @timmedin.bsky.social presenting "Death by Dashboards: Moving the Needle on What Actually Matters"
#hacking #infosec #cybersecurity #wwhf
#hacking #infosec #cybersecurity #wwhf
October 10, 2025 at 12:17 AM
Two days of teaching Pen Testing: Beyond the Basics ✅
Two hour Kerberos workshop ✅
Talk ✅
Tomorrow, time to be a full time booth babe.
Two hour Kerberos workshop ✅
Talk ✅
Tomorrow, time to be a full time booth babe.
Last year at @wildwesthackinfest.bsky.social a few packages arrived late (not mine). The maintenance staff regularly receives packages and thought it was theirs. They opened it, found a pack of stickers.
They have been putting them on their stuff and the hotel.
"We wondered who that guy was"
They have been putting them on their stuff and the hotel.
"We wondered who that guy was"
October 9, 2025 at 9:24 PM
Last year at @wildwesthackinfest.bsky.social a few packages arrived late (not mine). The maintenance staff regularly receives packages and thought it was theirs. They opened it, found a pack of stickers.
They have been putting them on their stuff and the hotel.
"We wondered who that guy was"
They have been putting them on their stuff and the hotel.
"We wondered who that guy was"
Reposted by Tim Medin
Senior Security Consultant Justin Palk tells you everything you need to know about getting started with proxy chains in this blog 🔗 redsiege.com/proxychains
#hacking #infosec #cybersecurity
#hacking #infosec #cybersecurity
October 9, 2025 at 2:01 PM
Senior Security Consultant Justin Palk tells you everything you need to know about getting started with proxy chains in this blog 🔗 redsiege.com/proxychains
#hacking #infosec #cybersecurity
#hacking #infosec #cybersecurity
The booth is hopping! Stop by to get tons of stickers, a shirt, and get entered to win a framed autographed picture from Hackers.
The booth is buzzin here at @wildwesthackinfest.bsky.social! We've had the chance to meet so many awesome folks already.
There's still plenty of handshakes, high fives, and killer swag to give out!
#hacking #infosec #cybersecurity #wwhf
There's still plenty of handshakes, high fives, and killer swag to give out!
#hacking #infosec #cybersecurity #wwhf
October 9, 2025 at 7:23 PM
The booth is hopping! Stop by to get tons of stickers, a shirt, and get entered to win a framed autographed picture from Hackers.
Join us tomorrow!
Don't miss out! Tomorrow, @timmedin.bsky.social of @redsiege.com joins us for #ThursDef at 12:30 PM CT to discuss Offensive for Defense.
This 30-minute fireside chat is one you won't want to miss. Register now: thursdef.com
#ThursdayDefensive #cybersecurity #infosec
This 30-minute fireside chat is one you won't want to miss. Register now: thursdef.com
#ThursdayDefensive #cybersecurity #infosec
October 1, 2025 at 5:36 PM
Join us tomorrow!
Live now with pre-show banter with @mzbat.bsky.social (Kimber) and @antisyphontraining.bsky.social.
Close Security Gaps, Pass Audits, Stay Secure w/ Kimber Amos and @redsiege.com
www.antisyphontraining.com/event/anti-c...
Close Security Gaps, Pass Audits, Stay Secure w/ Kimber Amos and @redsiege.com
www.antisyphontraining.com/event/anti-c...
Anti-Cast: Close Security Gaps, Pass Audits, Stay Secure with Kimber Amos - Antisyphon Training
Join Kimber Amos for a free one-hour training on cutting through compliance theater and running reviews that actually strengthen defenses and keep auditors happy.
www.antisyphontraining.com
October 1, 2025 at 3:38 PM
Live now with pre-show banter with @mzbat.bsky.social (Kimber) and @antisyphontraining.bsky.social.
Close Security Gaps, Pass Audits, Stay Secure w/ Kimber Amos and @redsiege.com
www.antisyphontraining.com/event/anti-c...
Close Security Gaps, Pass Audits, Stay Secure w/ Kimber Amos and @redsiege.com
www.antisyphontraining.com/event/anti-c...
I think about this often.
What is a real world bad guy's level of effort for cracking?
How long do they spend?
How big is their cracker?
Do they have multiple crackers?
How do they distribute the load?
What is a real world bad guy's level of effort for cracking?
How long do they spend?
How big is their cracker?
Do they have multiple crackers?
How do they distribute the load?
My understanding from @timmedin.bsky.social is RC4 risk is mitigable w/ a properly (service account std differs from user account) strong password. If it was never cracked by a pen tester, because their level of effort vs. adversary effort differed--how would Ascension know it wasn't strong enough?
September 30, 2025 at 2:18 PM
I think about this often.
What is a real world bad guy's level of effort for cracking?
How long do they spend?
How big is their cracker?
Do they have multiple crackers?
How do they distribute the load?
What is a real world bad guy's level of effort for cracking?
How long do they spend?
How big is their cracker?
Do they have multiple crackers?
How do they distribute the load?
BRB, going to wake up Billie Joe.
www.youtube.com/watch?v=pGhw...
www.youtube.com/watch?v=pGhw...
Green Day - Wake Me Up When September Ends (Official Audio)
YouTube video by Green Day
www.youtube.com
September 30, 2025 at 2:05 PM
BRB, going to wake up Billie Joe.
www.youtube.com/watch?v=pGhw...
www.youtube.com/watch?v=pGhw...
Join me next week on the Thursday Defensive (thursdef.com) next Thursday at 1:30 ET on Offensive for Defense - How defenders can use offensive tools to test themselves.
September 26, 2025 at 5:03 PM
Join me next week on the Thursday Defensive (thursdef.com) next Thursday at 1:30 ET on Offensive for Defense - How defenders can use offensive tools to test themselves.
Couldn't agree more. How many high/crit PHP findings in your vuln scan reports that are meaningless because that function isn't used (or used with user input). Teams work hard remediate issues that have 0 impact, largely because it shows up in a dashboard, metrics, or KPIs... not because it matters.
Today's hot take: "Vulnerability" as a term has become meaningless in the industry.
I propose that at a system level, a vulnerability is not a *vulnerability* if there are other intact, effective compensating controls. Many of the things we call vulns should just be called bugs
I propose that at a system level, a vulnerability is not a *vulnerability* if there are other intact, effective compensating controls. Many of the things we call vulns should just be called bugs
September 24, 2025 at 4:45 PM
Couldn't agree more. How many high/crit PHP findings in your vuln scan reports that are meaningless because that function isn't used (or used with user input). Teams work hard remediate issues that have 0 impact, largely because it shows up in a dashboard, metrics, or KPIs... not because it matters.
Really cool to be interviewed and quoted in this article.
Our CEO @timmedin.bsky.social offers his thoughts on what exactly led to the Ascension breach in this follow-up article from Ars Technica:
arstechnica.com/security/202...
#hacking #infosec #cybersecurity
arstechnica.com/security/202...
#hacking #infosec #cybersecurity
How weak passwords and other failings led to catastrophic breach of Ascension
A deep-dive into Active Directory and how “Kerberoasting” breaks it wide open.
arstechnica.com
September 18, 2025 at 6:57 PM
Really cool to be interviewed and quoted in this article.
RC4 used with Kerberos isn't the fundemental flaw we think. Yes, RC4 is deprecated, but the real issue is the key generation for AES v RC4 for cracking (Kerberoasting). With RC4 the key = password hash. With AES it is 4096 rounds of hashing of hash+username+domain. The 4096 rounds matters, a lot!
September 16, 2025 at 5:14 PM
RC4 used with Kerberos isn't the fundemental flaw we think. Yes, RC4 is deprecated, but the real issue is the key generation for AES v RC4 for cracking (Kerberoasting). With RC4 the key = password hash. With AES it is 4096 rounds of hashing of hash+username+domain. The 4096 rounds matters, a lot!
I'm looking forward to @wildwesthackinfest.bsky.social. I also have a Kerberos workshop there, so check that out.
Oh, and we'll have tons of swag at the @redsiege.com booth, so stop by if you're in-person!
Oh, and we'll have tons of swag at the @redsiege.com booth, so stop by if you're in-person!
@timmedin.bsky.social is ridin' into Wild West Hackin' Fest - Deadwood 2025 with his talk "Death by Dashboards: Moving the Needle on What Actually Matters"
Virtual con and virtual training tickets are still available! wildwesthackinfest.com/register-for...
#WWHF #Deadwood2025 #TheFutureIs
Virtual con and virtual training tickets are still available! wildwesthackinfest.com/register-for...
#WWHF #Deadwood2025 #TheFutureIs
September 12, 2025 at 5:02 PM
I'm looking forward to @wildwesthackinfest.bsky.social. I also have a Kerberos workshop there, so check that out.
Oh, and we'll have tons of swag at the @redsiege.com booth, so stop by if you're in-person!
Oh, and we'll have tons of swag at the @redsiege.com booth, so stop by if you're in-person!
In response to Senator Ron Wyden's letter to the FTC, I have put together my comments on Kerberoasting and RC4.
redsiege.com/blog/2025/09...
redsiege.com/blog/2025/09...
redsiege.com
September 11, 2025 at 2:26 PM
In response to Senator Ron Wyden's letter to the FTC, I have put together my comments on Kerberoasting and RC4.
redsiege.com/blog/2025/09...
redsiege.com/blog/2025/09...
A senator talking about Kerberoasting was not on my bingo card!
September 10, 2025 at 9:44 PM
A senator talking about Kerberoasting was not on my bingo card!
The issue isn't as much RC4 as it is bad passwords. While RC4 isn't good, other encryption does *not* prevent Kerberoasting. AES128 and AES256 just slow down the attack by ~100-170x. If the password is really bad, 170x is meaningless.
@matthewdgreen.bsky.social
arstechnica.com/security/202...
@matthewdgreen.bsky.social
arstechnica.com/security/202...
Senator blasts Microsoft for making default Windows vulnerable to “Kerberoasting”
Wyden says default use of RC4 cipher led to last year’s breach of health giant Ascension.
arstechnica.com
September 10, 2025 at 9:22 PM
The issue isn't as much RC4 as it is bad passwords. While RC4 isn't good, other encryption does *not* prevent Kerberoasting. AES128 and AES256 just slow down the attack by ~100-170x. If the password is really bad, 170x is meaningless.
@matthewdgreen.bsky.social
arstechnica.com/security/202...
@matthewdgreen.bsky.social
arstechnica.com/security/202...
“Always go for more sparkles!”
Words of wisdom from a 9 yo at Heathrow when I asked if I should get the more and less sparkling water.
Such a valuable life lesson there.
She also said, “trust the diva”. Another valuable lesson.
Words of wisdom from a 9 yo at Heathrow when I asked if I should get the more and less sparkling water.
Such a valuable life lesson there.
She also said, “trust the diva”. Another valuable lesson.
August 16, 2025 at 4:43 PM
“Always go for more sparkles!”
Words of wisdom from a 9 yo at Heathrow when I asked if I should get the more and less sparkling water.
Such a valuable life lesson there.
She also said, “trust the diva”. Another valuable lesson.
Words of wisdom from a 9 yo at Heathrow when I asked if I should get the more and less sparkling water.
Such a valuable life lesson there.
She also said, “trust the diva”. Another valuable lesson.
I love KC. BBQ capital of world! Had some fantastic Gates BBQ!
August 15, 2025 at 12:24 AM
I love KC. BBQ capital of world! Had some fantastic Gates BBQ!
After some fantastic KC BBQ at Gates last night, Molly and I are at INTERFACE KC 2025. Great group and I'm thankful for the opportunity to present! If you're here, come stop by the @redsiege.com booth!
August 14, 2025 at 6:26 PM
After some fantastic KC BBQ at Gates last night, Molly and I are at INTERFACE KC 2025. Great group and I'm thankful for the opportunity to present! If you're here, come stop by the @redsiege.com booth!
Day 1 of Red Team Tactics in the bag! And we got the best named room at @blackhatevents.bsky.social!
August 3, 2025 at 2:15 AM
Day 1 of Red Team Tactics in the bag! And we got the best named room at @blackhatevents.bsky.social!
I watched Happy Gilmore 2 with my boys last night. It was fantastic and so much fun. Loved all the fan service and cameos. It was actually funny too.
Loved it!
Loved it!
July 29, 2025 at 4:21 PM
I watched Happy Gilmore 2 with my boys last night. It was fantastic and so much fun. Loved all the fan service and cameos. It was actually funny too.
Loved it!
Loved it!
