Cobalt Strike continues to keep blue teams on their toes. GuidePoint Security investigates an unconventional
#cobaltstrike
stager that utilizes GUIDs to assemble and execute shellcode for retrieving a beacon payload from C2 infrastructure.
#BlueTeam
@5ynax
For Red Teams, a major challenge is getting an infrastructure up and running. This struggle has led our own Alex Williams
@offsec_ginger
to build RedCommander. Learn more about the tool and how to access it in our newest blog post.
#redteaming
#pentesting
GuidePoint Security’s DFIR team has reverse-engineered the SUPERNOVA webshell involved in the
#SolarWindsOrion
supply chain attack in our latest blog post. Learn how the shell works and our recommendations for detection and response.
#SolarWinds
#UNC2542
[BLOG] Marshall Price,
@GuidePointSec
, digs into the risks of compromised
#SCCM
admin accounts. Learn how attackers can use these privileges to compromise entire networks and best practices to protect your infrastructure.
#CobaltStrike
#ThreatIntelligence
GuidePoint Security is proud to introduce Red Commander – an open source infrastructure for Red Teaming. This fully working base model solves a major challenge for red teams.
#redteaming
#pentesting
History teaches us how to understand change. Our Practice Director of Cloud Security, Jonathan Villa, helps us interpret how the evolution of
#cloudsecurity
better prepares us for now and in the future. Read on:
Kerberos Delegation in Active Directory - the missing tactical cheatsheet on how to (ab)use Active Directory to escalate privileges and move laterally in modern environments.
#GuidePointSecurity
#CyberAttack
Our very own Patrick Orzechowski, Vice President of vSOC Research & Development, presented 'Threat Intel at Scale' today
@Anomali
#Detect18
conference in Washington, DC.
@GuidePointSec
Listen to Summer Lee speak at
@ShowMeConSTL
tomorrow! The talk will follow a network pentest theme to help bridge the gap between logical and physical pentesters, including examples of these two types of skills.Don’t miss Summer’s ‘Getting Physical on a Human Pentest’ at 1:30pm
Splunk names GuidePoint Security Global Partner of the Year and Americas Partner of the Year for outstanding performance. Full release here:
#SplunkGPS
#MSSP
#Cybersecurity
Ready to start your hacking adventure? You'll be tested with decrypting a secret code, discovering vulnerabilities, gaining administrative or 'root' permission and more. Gear up...our
#CaptureTheFlag
starts Tuesday 8/10 @ 8am EST.
#CTF
#InfoSec
Once an attacker enters your network, their next goal is often to elevate their privileges. Learn how adversaries abuse Active Directory (mis)configurations to accomplish their objectives & how to identify these types of weaknesses in your own environment.
Our game of
#CaptureTheFlag
starts 6/22 - 6/28 with more difficult level challenges than ever before. Imagine creating your own bank account through a command line interface test that contains a vulnerability. Sign on now:
#CTF
#DevSecOps
#infosec
While conducting an engagement to assess the security of a major online retailer, GuidePoint consultants discovered that the retailer was utilizing a vulnerable third-party JavaScript (JS) library. Continue reading: .
#CVE
-2020-20455
Take a closer look at one of the approaches used to perform controlled attacks on computer systems in order to assess its security.
#penetrationtesting
#pentesting
#CaptureTheFlag
hacking competition starts Tuesday, 6/22 @ 8am EST. Decrypt a secret code by brute-forcing, discover a vulnerability in the encryption, or hack into a network device to gain administrative or ‘root’ permission. Are you up for the challenge?
From
#GPSec
in Philly… our CTO, Joe Leonard, is now discussing a strategic security approach and explaining how GPVUE can help an organization with a holistic security program.
#cybersecurity
#infosecurity
GuidePoint Security announced today that it is one of the first Amazon Web Services (AWS) Consulting Partners to quote and contract cybersecurity services in
@awsmarketplace
. For more details: .
GuidePoint is proud to have been named Zscaler’s AMS East Partner of the Year this week at Zenith Live, the
@Zscaler
Cloud Summit. We appreciate the nod.
#cloudsecurity
#topsecuritypartner
Are you headed to
#defcon27
? If so, don't miss
@catmurd0ck
's session, Black Mirror: You are your own privacy nightmare – the hidden threat of paying for subscription services. It's today at 4 PM at the Crypto & Privacy Village, Planet Hollywood rooms Celebrity 1 & 2.
GuidePoint's Security Analyst, Cat Murdock, made news after demonstrating at
@DefCon
27 how easy it is to steal bank information by accessing a Netflix account. Check out our new on-demand webinar - Black Mirror: You Are Your Own Privacy.
We’ve subverted all controls on a kiosk used to dispense schedule II drugs. Hear about this + other hardware hacking exploits at
#blackhat2022
+
#DEFcon
. Join us for drinks + stories at our Happy Hour, 8/9 @ 5:30pm PDT at Skyfall Lounge, Delano Las Vegas.
Join us for
@Anomali
#threatintel
conference,
#Detect18
in Washington, DC - September 19-21, 2018! Stop by booth
#17
on the Mezzanine level as our vSOC and Federal team will be on-site to share our latest
#cyber
intel.
GuidePoint Security raises $22,500 for
@ToysForTots_USA
in our Mid-Atlantic region. Thank you to the contribution towards the Holiday Brewery Charity Event from our attendees.
#cybersecurity
#toysfortots
Customer success begins with understanding the story of the person we’re trying to delight. Hear from Scott Main, Senior Cyber Security Engineer at K. Hovnanian Homes who knew that his company needed help so he turned to
@GuidePointSec
. Watch here:
It was standing room only for our Cloud Security Dir. Jonathan Villa, who spoke on the Principals of Effective Cloud Security at
@SecureWorld
Boston. Security Teams are connected with industry peers to share knowledge and tools that are needed to protect against cyber threats.
GuidePoint Security’s Sr Managing Security Consultant, Ed Dunnahoe, will speak at the Central VA
#ISSA
@Mekong
today. Join him at 5:45pm while he talks about the most frequent things he sees implemented in environments and give pointers on what the most effective defenses are.
Our sold out Customize Your Ride event was a hit! Thanks to our sponsors
@digitalshadows
@CrowdStrike
and
#GuidePointSecurity
Robert Vaile who spoke on managing and reducing your security risks, and how we come together to form a viable solution against risks and threats
We're ready to cheer on Summer Lee during her 1:30 pm talk today on "The Human Pentest"
@BSidesAustin
. Summer will cover tactics and approaches that can be leveraged to achieve client goals and provide value, even when having to operate within tight logistical constraints.
Bryan Austin from the GuidePoint vSOC team will be joining
@BYOSradio
tonight at 9 pm EST to talk about the state of
#cybersecurity
, training, and techniques that help defenders keep organizations safe. Tune in tonight!
It is a great honor to celebrate with our customers and our industry being named the 2020 winner of the Cyber Company of the Year Award presented by
@NoVaTechCouncil
. We proudly stand with our customers helping them ensure a safer, more secure tomorrow.
GuidePoint Security announces a venture round with ABS Capital Partners, a leading late-stage growth company investor. The funding will enable
@GuidePointSec
to accelerate organic growth and geographic expansion.
#cybersecurityfunding
Join
@GuidePointSec
Federal CTO J.P. Bergeaux,
@Gigamon
CEO and VP of Federal at our
#RSAC
Government Breakfast to hear about increasing efficiency and reducing complexity of security prevention stack and controlling data for improved visibility. Sign up:
Do you need to create a practical data security program? Catch our health care expert, Sonia Arista, speaking
@HIMSS
tomorrow at 8:30am. She'll summarize regulatory guidance on effective security standards and focus on the difference between a security incident and a data breach.
GuidePoint Security just launched a new service,
#CaptureTheFlag
, that's designed to expand your knowledge for improving your offensive and defensive security skills in a low-risk environment. Find out more:
#RedTeam
#BlueTeam