DANA ON DATA

For the pwncat fans out there, I bring you privesc to root via CVE-2022-0847.

I released a custom pwnkit module for pwncat that automatically exploits CVE-2021-4034 to priv esc to root. Enjoy!

Security research in the MSP space is abysmal. Huntress is going to have a hard uphill battle getting vendors to participate in bug bounties

So this weekend TryHackMe released a new challenge room called DearQA. It's marked as an Easy room, and it didn't take much time at all...

Safely do recon, find a vulnerable target and detonate your JNDI injection payloads to get root in this TryHackMe challenge room I wrote.

Recently I had the opportunity to present my views on how to use honeytokens to help you detect early on in the attack chain when hackers...

So in the latest episode of #KnowOps I help a community member out by showing how to setup Azure to detect and alert when emergency...

Azure relies heavily on Azure Storage. From your VM disks to your application queues, chances are you have sensitive data already saved...

So in this week's episode of #KnowOps I help answer the question on how to lock down Internet access to your Azure Key Vault through the...

Fellow MVP and ethical hacker Nino Crudele has released an awesome free whitepaper on the Azure Fundamental for Ethical Hackers and...

New episode of #KnowOps is out. I demonstrate how you can use "managed identities" inside of a virtual machine running in Azure to access...

Latest episode of #KnowOps is out. I show how to use Azure Key Vault to protect secrets that you can use pretty much everywhere in Azure,...

You gotta ❤ the power of Infrastructure as Code. Being able to describe your cloud environment in a text file and spin it up with a...

Throughout 2019 I took time every month to brush up on my skills in Azure. I paid for online courses, attended seminars and even...

If you are an AWS professional coming to Azure it can be easy... and yet confusing. Azure and AWS built their capabilities independently...

In the latest episode of #KnowOps I help clarify how you should consider setting up your Azure subscriptions when you first start...

Latest episode of #KnowOps is out. I introduce you to how I sift through millions of records of audit data in Azure in a matter of...

It seems like almost every day Microsoft makes improvements to Azure. Being a better Azure administrator means you need to keep up with...

Another episode of #KnowOps you might be interested in. I talk about the different cloud computing options in a way for new admins to...

Recently I have had the opportunity to engage with peers on social media about how secure their data is in Azure. It brought up some...