Compromised a domain tonight in the craziest of ways.
VNC Server with no authentication -> LastPass vault open in browser -> main DA account in LastPass vault -> $$$
TheMayor - Joe Helle
10.6K posts
TheMayor - Joe Helle
@joehelle
U.S. Army Iraq & Afghanistan Veteran | Former Mayor | Penetration Tester | PPG Trike Pilot | Occasional Political Commentary
- Course update - Working on the automation script for you all to run in your lab environments so you aren't spending days trying to build it out manually. Need to add around 5-10 more users, add them to appropriate groups, create and modify ACL & add Kerberoasting. Then testing!
- It's time to look beyond Offensive Security in this industry. Training diversity matters when building diverse teams, and that applies to any field. If you're a hiring manager, take note of some of these alternatives you may see on resumes and accept them. A thread 🧵
- Cybersecurity can absolutely be entry level - the industry just needs to train you to do it and stop pawning off ownership of the field on everyone else. It's time to reinvent the wheel on cybersecurity hiring.
- Never stop hustling. People recognize hard work, and in this field being recognized is half the battle. Everyone's path is different, but one thing should always remain the same - make it impossible to be ignored. Here's my hustle. What has yours been?
- A year ago my yearly wage was my VA check - $24,000. This year it'll be closer to $150,000. Why do I say this? Because a guy with big dreams and ambitions and little IT experience figured this out, and so can you. So how did I do it? (1/7)
- Learn the basics of hacking with Powershell FOR FREE. These are basics that every pentester needs to know and understand to be successful. -
- I’d like to report a bug on Mars please.
- Thinking about creating a start-to-finish series on Youtube for various pentest engagements. We'll use fictional environments or random apps from Github that are self-hosted, but include everything from fictional client contact, testing, and reporting. Would that interest you?
