Scott Sutherland's Avatar

Scott Sutherland

@nullbind

61
Followers 73
Following 3
Posts 17.11.2024
Joined
Posts Following

Latest posts by Scott Sutherland @nullbind

I had a great time at #socon2025! Big thanks to the SpecterOps crew for hosting. Slides for my "Hunting SMB Shares" talk are below for those who are interested.

Slides
github.com/NetSPI/Power...

PowerHuntShares
github.com/NetSPI/Power...

02.04.2025 12:48 👍 3 🔁 2 💬 0 📌 0
Preview
Hijacking Azure Machine Learning Notebooks (via Storage Accounts) Abusing Storage Account Permissions to attack Azure Machine Learning notebooks

And here's a link to the blog - www.netspi.com/blog/technic...

08.01.2025 16:33 👍 2 🔁 1 💬 0 📌 0
Preview
MicroBurst/Az/Get-AzMachineLearningCredentials.ps1 at master · NetSPI/MicroBurst A collection of scripts for assessing Microsoft Azure security - NetSPI/MicroBurst

In addition to the blog out today, there's a new tool in MicroBurst - Get-AzMachineLearningCredentials
This one has been in the works for a while, but it's a tool to dump the credentials that are stored by the Azure Machine Learning service. github.com/NetSPI/Micro...

08.01.2025 16:33 👍 5 🔁 3 💬 1 📌 0
Post image

Today is #BloodHoundBasics Day! 🙌

We commonly see Domain Admins peppered across Organizational Units. This can degrade your security posture by making Group Policy enforcement hard to understand or audit.

BloodHound helps by visualizing BOTH the OU placement AND group membership.

🧵 1/2

29.11.2024 19:43 👍 9 🔁 1 💬 1 📌 0

Oops, bad link, fixed: raw.githubusercontent.com/NetSPI/Power...

28.11.2024 20:57 👍 0 🔁 0 💬 0 📌 0
Post image

PowerHuntShares.v2: New Sample HTML Report
Here is a sample report for those who wanted it. Enjoy!
raw.githubusercontent.com/NetSPI/PowerHu…

28.11.2024 15:44 👍 1 🔁 1 💬 1 📌 0
Preview
2024: The State of Generative AI in the Enterprise - Menlo Ventures The enterprise AI landscape is being rewritten in real time. We surveyed 600 U.S. enterprise IT decision-makers to reveal the emerging winners and losers.

This State of Generative AI report from Menlo Ventures provided some good insights on where cybersecurity professionals might look for risk in terms of assessments and research.

menlovc.com/2024-the-sta...

22.11.2024 23:07 👍 2 🔁 1 💬 2 📌 0
Preview
Add key vault cryptographic op funcs · BloodHoundAD/BARK@e1c82a1

I couldn't find any PowerShell examples of encrypting/decrypting data w/ Azure Key Vault keys, so I made some:

Protect-StringWithAzureKeyVaultKey
Unprotect-StringWithAzureKeyVaultKey

github.com/BloodHoundAD...

Explanatory blog post coming soon.

19.11.2024 00:24 👍 16 🔁 6 💬 1 📌 0