Resources

Downloadable PDFs

News & Events

Blog

Malicious Azure AD Application Registrations 1090 726 Lee Kagan

Malicious Azure AD Application Registrations

Background It’s important I point out upfront that nothing I am demonstrating I can take credit for. Evidence of this used in the wild was talked about as mentioned here on Twitter. In Azure AD a user (unless mitigated which we’ll talk about at the end of this post) can create and register a new…

read more
Credit Union Morning Coffee – Week of June 8, 2020 1328 740 Andrew Hay

Credit Union Morning Coffee – Week of June 8, 2020

Welcome to the Lares Credit Union Solutions Credit Union Morning Coffee informative video for the week of June 8, 2020. This video provides Credit Union executives, IT staff, and security analysts with the news they need to begin their week over their first cup of coffee on Monday morning – all in about 60 seconds.…

read more
I Want a Pentest, Part 2: Overcoming the Resistance 2048 1365 Mark Arnold

I Want a Pentest, Part 2: Overcoming the Resistance

Fear, Trepidation, and Resistance In our scoping calls, it is not uncommon to sense fear and trepidation on behalf of the buyer or upper management regarding the exercise. Customers resist pentesting for a variety of reasons but a lack of understanding is the prevailing reason for reluctance. We encounter consumers, with the exception of those…

read more
Credit Union Morning Coffee – Week of May 25, 2020 1328 740 Andrew Hay

Credit Union Morning Coffee – Week of May 25, 2020

Welcome to the Lares Credit Union Solutions Credit Union Morning Coffee informative video for the week of May 25, 2020. This video provides Credit Union executives, IT staff, and security analysts with the news they need to begin their week over their first cup of coffee on Monday morning – all in about 60 seconds.…

read more
Lares Contributes to the Verizon DBIR 833 833 Andrew Hay

Lares Contributes to the Verizon DBIR

Another year has passed and that means that it’s time for the annual Verizon Data Breach Investigations Report (DBIR). In its 13th year, the DBIR provides data from real-world breaches that are analyzed by the team at Verizon. In an effort to enrich their data set, the Verizon team relies upon trusted contributors with access…

read more
Lares Featured in Recent EternalBlue Article 200 200 Andrew Hay

Lares Featured in Recent EternalBlue Article

Our friend Dan Raywood over at Infosecurity Magazine recently published his Q2 2020 Parting Shots editorial piece with several references to Lares and our 2019 Top 10 Penetration Test Findings report. From the article: It is now more than three years since patches were released by Microsoft to fix the vulnerability named MS17-010, and therefore…

read more
Credit Union Morning Coffee – Week of May 18, 2020 1328 740 Andrew Hay

Credit Union Morning Coffee – Week of May 18, 2020

Welcome to the Lares Credit Union Solutions Credit Union Morning Coffee informative video for the week of May 18, 2020. This video provides Credit Union executives, IT staff, and security analysts with the news they need to begin their week over their first cup of coffee on Monday morning – all in about 60 seconds.…

read more
Credit Union Morning Coffee – Week of May 11, 2020 1328 740 Andrew Hay

Credit Union Morning Coffee – Week of May 11, 2020

Welcome to the Lares Credit Union Solutions Credit Union Morning Coffee informative video for the week of May 11, 2020. This video provides Credit Union executives, IT staff, and security analysts with the news they need to begin their week over their first cup of coffee on Monday morning – all in about 60 seconds.…

read more
I Want a Pentest, Part 1 1474 1024 Mark Arnold

I Want a Pentest, Part 1

What Could Possibly Go Wrong? I once contracted out a firm to perform a pentest to satisfy our annual pentest for our PCI-DSS requirements. We went through the phases of scoping out the testing and defining the rules of engagement (ROE) agreed upon for the annual examination. With all the pentest pleasantries aside, we gave…

read more
What Are Lares Office Hours? 1090 727 Andrew Hay

What Are Lares Office Hours?

As many of you know, we have been running weekly Office Hours sessions after our very successful pilot program back in March. We’ve had friends, colleagues, customers, and prospects drop in to chat with both our leadership and testing teams. Some people, however, may still be confused as to the reason for Lares holding office…

read more

Webcasts

Videos

Where There is Unity, There is Victory

[Ubi concordia, ibi victoria]

– Publius Syrus

Contact Lares Consulting logo (image)

Continuous defensive improvement through adversarial simulation and collaboration.

©2019 Lares, LLC | All rights reserved.
    Privacy Preferences

    When you visit our website, it may store information through your browser from specific services, usually in the form of cookies. Some types of cookies may impact your experience on our website and the services we are able to offer. It may disable certain pages or features entirely. If you do not agree to the storage or tracking of your data and activities, you should leave the site now.

    Our website uses cookies, many to support third-party services, such as Google Analytics. Click now to agree to our use of cookies or you may leave the site now.