FEATURED BLOG
Cybersecurity Framework Assessments: Prioritizing Your Remediation
Cybersecurity framework assessments often reveal numerous gaps, leading to a need for prioritization. This blog explores how to rank and address these issues based on risk analysis, business objectives, and available resources.
Join Us in Welcoming the Newest Addition to the SEVN-X Team
Eric Buck joins the SEVN-X team!
The New SEVN-X website is LIVE!!!
We are excited to announce the launch of our brand new website!
What's In My Physical Testing Field Kit 2022!
Tune in as Matt Barnett and Brice Self talk gear and tactics for physical penetration tests in 2022.
FOUR-X Day Work week
Why is it tremendously difficult to differentiate work from home, when you work from home? It seems to us that the blurred lines between our jobs and our personal lives have accelerated burnout without accelerating productivity. Starting in February, SEVN-X will be implementing a 4-day workweek to best serve our internal and external customers.
Recording Physical Security Engagements
Matt Barnett recaps the tools used in 2021 by SEVN-X to capture their physical security engagements.
Physical Security: Breaking Down the Break-in
A critical component to effective cybersecurity is effective physical security of our information security assets. In this episode of the 7XFiles, Matt Barnett sits down with Keith Pachulski in New Orleans to discuss various aspects of physical security.
How to Bypass Azure Conditional Access
Attackers are using this trick to bypass conditional access rules in Azure. In this episode of the #7XFiles, Matt Barnett walks you through the tactic and the remediation necessary to close this gap in your environment.
Creating Forensic Images of APFS Drives
Matt Barnett walks you through creating a forensic copy of an APFS drive.
Hacking the Pipeline Ft. Brett Hodges of Cyberblack
Matt Barnett and Founder and CEO of Cyberblack, Brett Hodges, analyze the Colonial Pipeline attack in the weeks since the massive shutdown caused fuel prices to surge and incited panic buying across the country. This episode of the 7X Files digs into what we can learn from this attack and what can you do to ensure your organization isn’t the next victim.
7 Steps to Secure Your Cloud
If you are just getting into the cloud or finally circling back around to your cloud's security, Matt Barnett offers 7 (of course) tips to help get you started.
Building A Password Cracker in AWS
Ever wanted to use all that AWS compute power for something fun? How about cracking passwords? In this post, I'll walk you through building a formidable cloud-hosted password cracking rig.
Linux Privilege Escalation Vulnerability (CVE-2021-3156)
A newly-discovered vulnerability allows for privilege escalation on the linux command line. BLUF: The exploit hasn't been released (yet) but the patch is out. So patch now (sudo 1.9.5p2).
Let's Talk Ransomware
Many organizations find themselves in a position where customers are asking for an independent certification”