7 Minute Security is a weekly information security podcast focusing on penetration testing, blue teaming and building a career in security. The podcast also features in-depth interviews with industry leaders who share their insights, tools, tips and tricks for being a successful security engineer.
https://7ms.us/
7MS #589: Tales of Pentest Pwnage - Part 51
In today's tale of pentest pwnage we talk about:
-
The importance of local admin and how access to even one server might mean instant, full control over their backup or virtualization infrastructure
-
Copying files via WinRM when copying over SMB is blocked:
...then provide your creds...and then:
copy-item c:\superimportantfile.doc -destination c:\my-local-hard-drive\superimportantfile.doc -fromsession $sess- If you come across PowerShell code that crafts a secure string credential, you may able to decrypt the password variable with: