Phillip Wylie Show

Sean Metcalf: Active Directory Security

Listen Later

Summary

 

In this episode of the Phillip Wylie Show, Sean Metcalf, an

expert in Active Directory security, discusses his journey into cybersecurity, the evolution of Active Directory and Azure AD, and the common mistakes organizations make in cloud security. He emphasizes the importance of security assessments over penetration testing and shares insights into Trimarc's unique approach to security assessments. Sean also highlights the significance of scripting in security roles and discusses the future of Active Directory in hybrid environments. The episode concludes with information about Trimarc's new product, Trimarc Vision, aimed at enhancing Active Directory security.

 

Takeaways

 

  • Sean Metcalf has assessed environments with up to 960,000
    • users.
  • Active Directory security is often overlooked in
    • organizations.
  • Many organizations are making the same security mistakes in
    • the cloud as they did on-premises.
  • Security assessments are crucial for identifying potential
    • vulnerabilities.
  • Trimarc uses proprietary tools for in-depth security
    • assessments.
  • Scripting knowledge, especially in PowerShell, is beneficial
    • for security professionals.
  • Active Directory is not going away anytime soon due to
    • legacy applications.
  • Organizations should conduct security assessments every
    • couple of years.
  • Trimarc's assessments provide actionable insights for
    • improving security.
  • The new Trimarc Vision product aims to enhance Active
    • Directory security monitoring.

     

    Sound Bites

     

    • "It's been quite a year."
    • "I saw something change in the URL."
    • "We're the identity experts."

      •  

      Chapters

       

      00:00 Introduction to Active Directory Security

      03:33 Sean Metcalf's Hacker Origin Story

      06:20 The Evolution of Active Directory and Azure AD

      09:31 The Importance of Specialization in Cybersecurity

      12:30 Active Directory Security Challenges

      15:39 The Role of Security Assessments

      18:26 Comparing Trimarc and Bloodhound

      20:56 Understanding Active Directory Security Assessments

      22:35 Getting Started in Active Directory Security

      25:30 The Importance of Scripting in Security

      34:43 The Hybrid Environment: On-Prem vs Cloud

      37:23 Trimarc's Unique Services and Assessments

      40:17 Frequency of Active Directory Assessments

      42:21 Introducing Trimarc Vision

       

      Resources

      https://www.linkedin.com/in/seanmmetcalf/

      https://x.com/PyroTek3

      https://www.linkedin.com/company/trimarcsecurity/

      https://x.com/TrimarcSecurity

      https://www.trimarcsecurity.com/

      https://adsecurity.org/

       

       

      ...more
      View all episodesView all episodes
      Download on the App Store
      Phillip Wylie ShowBy Phillip Wylie
      • 4.9
      • 4.9
      • 4.9
      • 4.9
      • 4.9

      4.9

      18 ratings

      More shows like Phillip Wylie Show

      View all
      Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec by Jerry Bell and Andrew Kalat

      Defensive Security Podcast - Malware, Hacking, Cyber Security & Infosec

      369 Listeners

      Risky Business by Patrick Gray

      Risky Business

      373 Listeners

      SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast) by Johannes B. Ullrich

      SANS Internet Stormcenter Daily Cyber Security Podcast (Stormcast)

      637 Listeners

      CyberWire Daily by N2K Networks

      CyberWire Daily

      1,017 Listeners

      Smashing Security by Graham Cluley

      Smashing Security

      322 Listeners

      Click Here by Recorded Future News

      Click Here

      416 Listeners

      Darknet Diaries by Jack Rhysider

      Darknet Diaries

      7,999 Listeners

      Cybersecurity Today by Jim Love

      Cybersecurity Today

      175 Listeners

      CISO Series Podcast by David Spark, Mike Johnson, and Andy Ellis

      CISO Series Podcast

      188 Listeners

      Talkin' About [Infosec] News, Powered by Black Hills Information Security by Black Hills Information Security

      Talkin' About [Infosec] News, Powered by Black Hills Information Security

      93 Listeners

      All-In with Chamath, Jason, Sacks & Friedberg by All-In Podcast, LLC

      All-In with Chamath, Jason, Sacks & Friedberg

      9,829 Listeners

      Risky Bulletin by risky.biz

      Risky Bulletin

      44 Listeners

      Hacker And The Fed by Chris Tarbell & Hector Monsegur

      Hacker And The Fed

      168 Listeners

      Critical Thinking - Bug Bounty Podcast by Justin Gardner (Rhynorater) & Joseph Thacker (Rez0)

      Critical Thinking - Bug Bounty Podcast

      55 Listeners

      Simply Offensive by Simply Cyber Media Group

      Simply Offensive

      2 Listeners