7MS #681: Pentesting GOAD – Part 3

27/06/2025 18 min

Listen "7MS #681: Pentesting GOAD – Part 3"

Descargar episodio Ver en sitio original

Episode Synopsis

Today Joe "The Machine" Skeen and I pwn the third and final realm in the world of GOAD (Game of Active Directory): essos.local! The way we go about it is to do a WinRM connection to our previously-pwned Kingslanding domain, coerce authentication out of MEEREEN (the DC for essos.local) and then capture/abuse the TGT with Rubeus! Enjoy.

More episodes of the podcast 7 Minute Security

7MS #709: Second Impressions of Twingate 10/01/2026

7MS #708: Tales of Pentest Fail – Part 6 02/01/2026

7MS #707: Our New Pentest Course Has Launched! 26/12/2025

7MS #706: Tales of Pentest Pwnage – Part 80 19/12/2025

7MS #705: A Phishing Campaign Fail Tale 12/12/2025

7MS #704: DIY Pentest Dropbox Tips – Part 12 05/12/2025

7MS #703: Tales of Pentest Pwnage – Part 79 28/11/2025

7MS #702: Should You Hire AI to Run Your Next Pentest? 21/11/2025

7MS #701: What I'm Working on This Week – Part 5 14/11/2025

7MS #700: Pretender 07/11/2025

Ver todos los episodios

ZARZA We are Zarza, the prestigious firm behind major projects in information technology.

7MS #681: Pentesting GOAD – Part 3

Listen "7MS #681: Pentesting GOAD – Part 3"

Episode Synopsis

More episodes of the podcast 7 Minute Security

Gray Hat Hacking, those with ambiguous ethics…

Bandwidth: Broadband or Narrowband?

Bandwidth: Broadband or Narrowband?

Personnel recruitment via Web

Deep web or Invisible Internet

Subdomains, a glance with the experts!

Free Internet, a prediction in Nostradamus style

Educational Technology: From traditional to digital

Localhost, there’s no place like 127.0.0.1

Googling with breathtaking tricks you ignore

Gray Hat Hacking, those with ambiguous ethics…

Internet Predators on the prowl

Dot COM: The Internet’s dominant TLD