New Horizons
Project Management Academy
Six Sigma Online
TCM Security
TRACOM
Velopi
Watermark Learning
Login
Our Blog
Resources and insights
The latest industry news, interviews, technologies, and resources.
Professional Pentester Toolbox: TCM Security Picks
We asked the TCM Security team to share the pentest tools they rely on regularly for testing internal, external, web application, and physical environments.
Reverse Engineering and Exploiting Binaries: Hardware Hacking Part 4
In part four of our series on getting started with iot and hardware hacking, we explore reverse engineering and binary exploitation.
Start Your Cyber Career on the Help Desk
One way to break into cybersecurity is working the help desk. This article reviews how the skills learned on the help desk translate to a cybersecurity career.
So You Want to Be a Hacker: 2022 Edition
Video Version: https://youtu.be/lhz0-qAQlBM Introduction Last year, I posted a blog (https://tcm-sec.com/so-you-want-to-be-a-hacker-2021-edition/) and video (https://www.youtube.com/watch?v=mdsChhW056A) on how to become an ethical hacker in 2021. Given that it...
Top 5 Vulnerabilities We See on Web Apps
TCM Security conducts web application penetration testing. In this article, we review the top five most common findings we see in client web applications.
Bypassing Defender the Easy Way – Fodhelper
If you’ve ever tried to run a command prompt as administrator on your Windows OS before, you’ve seen a harmless popup appear. This is Windows User Account Control, or UAC. According to Microsoft, UAC “is a fundamental component of Microsoft’s overall security vision....
Pentest Tales #002: Digging Deep
Welcome to the second edition of Pentest Tales, a blog series that walks through real-world pentests we’ve performed in the past.
SMB Relay Attacks – Gift That Keeps on Giving
Trendy vulnerabilities like PrinterNightmare and attacking Active Directory Certificate Services may seem incredible currently (and they are), but they end up being manually patched out and dealt with over time. Systems administrators will consider their risk and...
Kerberoasting Domain Accounts
The Gift That Keeps on Giving Few vulnerabilities in the Windows Active Directory environment have had the long-lasting impact that Service Principal Names (SPN) have. Domain-connected services, such as MSSQL servers, web servers, and more may be connected and issued...
Stay Ahead of Cyber Threats
Get expert insights on the latest penetration testing strategies, emerging vulnerabilities, and cybersecurity best practices—straight to your inbox.
Loading form...
We care about your data in our privacy policy.