• 5shield
    • White Shield
    • Blue Shield
    • Black Shield
    • Red Shield
    • Gray Shield
  • Services
    • CCS | Cyber Consulting Services
    • CSS | Cyber Support Services
    • CFE | Cyber Forensic Examination
    • CIR | Cyber Incident Response
    • CPT | Cyber Penetration Test
    • CTH | Cyber Threat Hunting
  • Training Courses
    • 5shield Cyber Academy
    • Practical Passwords
    • Phishing Attacks & Defense
  • About 5shield

SADD:1 – Identify and Remove (or Secure) User SPNs

Blue Shield
Kerberoasting
Simple Active Directory Defense:1 Kerberos, the main authentication protocol of Microsoft Active Directory, uses Service Principal Names (SPNs) to associate the instance of a service with a sign-in account. An SPN is registered as an attribute of an AD account (computer OR user) usually when a service is installed (though it may also be set…
Read More

Malware Meltdown: MAFFIA

Blue Shield
Pros
I recently received some interesting malware attached to a phishing Email. This is always a great opportunity to do some basic (triage) malware analysis in order to get a general idea of the malware’s intent, capabilities, and how well our defenses are currently aligned with actual real-world threats. This time I decided to record the…
Read More

Phishing Attacks & Defense: Understanding “Quishing”

Blue Shield
Joes, Pros
In this brief video you’ll learn about a form of phishing attack known as “Quishing”. Though this technique has been seen a handful of times in the past, recently it’s started gaining more traction and is on the rise. Get lifetime access to the full Phishing Attacks & Defense course.
Read More

Microsoft 365 Threat Hunting Tool

Blue Shield
Pros
There are many tools and methods to conduct cyber threat hunting in a Microsoft 365 environment, but sometimes you just need a way to get some useful data that you can analyze quickly to answer that age old question “have we been hacked?”. In my opinion, Microsoft doesn’t make it easy to answer this question…
Read More

Business Email Compromise Defense

Blue Shield
Joes, Pros
While Ransomware continues to dominate the headlines, Business Email Compromise (BEC/EAC) tops the list of financial losses (over $1.8 billion dollars) in the most recent FBI Internet Crime Complaint (IC3) report. This trend shows no signs of slowing down as BEC attacks continue to grow in number and effectiveness. If you are involved in processing financial transactions…
Read More

Phishing Attacks & Defense

Blue Shield
Joes, Pros
Phishing is one of the most common (and effective) forms of cyber attacks today. In this short video, we’ll examine some simple techniques that can be used (by technical and non-technical individuals) to better defend against phishing attacks. For an in-depth exploration of phishing attacks and how you can defend against them enroll in the…
Read More

Uhhhhh…what just happened? – Basic Macro Malware Analysis for I.T. Pros.

Blue Shield
Pros
Have you ever had something bad happen to you that was so quick, so unexpected, and so shocking that it left you asking “Uhhhh…what just happened?” I’ve actually experienced this on many occasions (and I’ve noticed an uptick since I got married). For example, I once made the “helpful” suggestion to my wife that it…
Read More