Blog - Black Hills Information Security, Inc. blackhillsinfosec.com

Finding the Right Penetration Testing Company

blackhillsinfosec.com·20w20 weeks ago

Actions for Finding the Right Penetration Testing Company

Deceptive-Auditing: An Active Directory Honeypots Tool

blackhillsinfosec.com·21w21 weeks ago

Actions for Deceptive-Auditing: An Active Directory Honeypots Tool

The Curious Case of the Comburglar

blackhillsinfosec.com·24w24 weeks ago

Actions for The Curious Case of the Comburglar

How to Set Smart Goals (That Actually Work For You)

blackhillsinfosec.com·25w25 weeks ago

Actions for How to Set Smart Goals (That Actually Work For You)

Inside the BHIS SOC: A Conversation with Hayden Covington

blackhillsinfosec.com·26w26 weeks ago

Actions for Inside the BHIS SOC: A Conversation with Hayden Covington

Abusing Delegation with Impacket (Part 3): Resource-Based Constrained Delegation

blackhillsinfosec.com·27w27 weeks ago

Actions for Abusing Delegation with Impacket (Part 3): Resource-Based Constrained Delegation

Why You Got Hacked - 2025 Super Edition

blackhillsinfosec.com·28w28 weeks ago

Actions for Why You Got Hacked - 2025 Super Edition

Abusing Delegation with Impacket (Part 2): Constrained Delegation

blackhillsinfosec.com·29w29 weeks ago

Actions for Abusing Delegation with Impacket (Part 2): Constrained Delegation

Abusing Delegation with Impacket (Part 1): Unconstrained Delegation

blackhillsinfosec.com·30w30 weeks ago

Actions for Abusing Delegation with Impacket (Part 1): Unconstrained Delegation

GoSpoof – Turning Attacks into Intel

blackhillsinfosec.com·31w31 weeks ago

Actions for GoSpoof – Turning Attacks into Intel

Model Context Protocol (MCP)

blackhillsinfosec.com·32w32 weeks ago

Actions for Model Context Protocol (MCP)

Bypassing WAFs Using Oversized Requests

blackhillsinfosec.com·33w33 weeks ago

Actions for Bypassing WAFs Using Oversized Requests

Getting Started with AI Hacking Part 2: Prompt Injection

blackhillsinfosec.com·34w34 weeks ago

Actions for Getting Started with AI Hacking Part 2: Prompt Injection

Wrangling Windows Event Logs with Hayabusa & SOF-ELK (Part 2)

blackhillsinfosec.com·35w35 weeks ago

Actions for Wrangling Windows Event Logs with Hayabusa & SOF-ELK (Part 2)

DomCat: A Domain Categorization Tool

blackhillsinfosec.com·36w36 weeks ago

Actions for DomCat: A Domain Categorization Tool

Wrangling Windows Event Logs with Hayabusa & SOF-ELK (Part 1)

blackhillsinfosec.com·37w37 weeks ago

Actions for Wrangling Windows Event Logs with Hayabusa & SOF-ELK (Part 1)

Microsoft Store and WinGet: Security Risks for Corporate Environments

blackhillsinfosec.com·38w38 weeks ago

Actions for Microsoft Store and WinGet: Security Risks for Corporate Environments

Default Web Content

blackhillsinfosec.com·39w39 weeks ago

Actions for Default Web Content

MailFail

blackhillsinfosec.com·40w40 weeks ago

Actions for MailFail

Commonly Abused Administrative Utilities: A Hidden Risk to Enterprise Security

blackhillsinfosec.com·40w40 weeks ago

Actions for Commonly Abused Administrative Utilities: A Hidden Risk to Enterprise Security

Log in to enable infinite scrolling