The Cyber Threat Perspective

Episode 65: Unsecured Credentials and Where To Find Them

Oct 31, 2023

Get ready for a spine-chilling dive into the world of unsecured credentials! Discover the hidden spots where credentials often lurk, like unattended answer files and even auto hotkey scripts. The hosts share eye-opening stories about the dangers of overprivileged accounts and misconfigured tools. Uncover how everyday items like sticky notes can become gateways for hackers. Ultimately, this thrilling discussion highlights the urgent need for better security practices and user education in the digital realm.

35:02

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

Identifying unsecured credentials in common places like file shares and logon scripts is vital for enhancing security during assessments.

Lesser-known vulnerabilities, such as credential leaks in app logs and email notes, pose significant risks that need proactive management to prevent breaches.

Deep dives

The Importance of Credential Discovery

Finding user credentials is a critical aspect of lateral movement within environments. Attackers often leverage unsecured credentials found in various locations to gain access to systems. Some common areas where credentials can be found include unattended installation files, which may contain Base64-encoded credentials for local administrator accounts. IT administrators and penetration testers should be aware of these potential vulnerabilities during their security assessments and remediation efforts.

Intro

4min

Securing Unsecured Credentials

11min

Risks of Overprivileged Accounts in Automated Tool Installations

2min

Unsecured Credentials and Their Risks

13min

Unmasking Security Vulnerabilities

5min

In this very special Halloween episode, prepared to be scared. Brad and Spencer discuss the common and not so common locations that we find credentials during penetration tests. This includes plaintext credentials and other types of credential material like API keys.

Blog: https://offsec.blog/
Youtube: https://www.youtube.com/@cyberthreatpov
Twitter: https://twitter.com/cyberthreatpov
Work with Us: https://securit360.com

Get the Snipd
podcast app

Unlock the knowledge in podcasts with the podcast player of the future.

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

Save any
moment

Hear something you like? Tap your headphones to save it with AI-generated key takeaways

Share
& Export

Send highlights to Twitter, WhatsApp or export them to Notion, Readwise & more

AI-powered
podcast player

Listen to all your favourite podcasts with AI-powered features

Discover
highlights

Listen to the best highlights from the podcasts you love and dive into the full episode

The Cyber Threat Perspective

Episode 65: Unsecured Credentials and Where To Find Them

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

The Importance of Credential Discovery

Common Locations for Securing Credentials

Utilizing Logon Scripts and Group Policies

Lesser-Known Sources of Credentials

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights

The Cyber Threat Perspective

Episode 65: Unsecured Credentials and Where To Find Them

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

The Importance of Credential Discovery

Common Locations for Securing Credentials

Utilizing Logon Scripts and Group Policies

Lesser-Known Sources of Credentials

Get the Snipdpodcast app

AI-poweredpodcast player

Discoverhighlights

Save anymoment

Share& Export

AI-poweredpodcast player

Discoverhighlights

Get the Snipd
podcast app

AI-powered
podcast player

Discover
highlights

Save any
moment

Share
& Export

AI-powered
podcast player

Discover
highlights