Today we're sharing an updates toepisode #512where we ran Rapid7'sInsightIDRthrough a bunch of attacks: Active Directory enumeration viaSharpHound Password spraying throughRubeus Kerberoasting and ASREPRoasting viaRubeus Network protocol poisoning withInveigh. Looking for a free way to detect protocol poisoning? Check outCanaryPi. Hash dumping usingImpacket. I also talk about an interestingTwitter threadthat discusses the detection of hash dumping. Pass-the-hash attacks withCrackMapExec In today's episode I share some emails and conversations we had with Rapid7 about these tests and their results. I'm also thrilled to share with you the articles themselves: Getting Started with Rapid7 InsightIDR: A SIEM Tutorial Testing & Evaluating SIEM Systems: A Review of Rapid7 InsightIDR