Internal security controls can make or break your ability to stop attackers in their tracks. In this episode, we break down the practical controls that actually frustrate adversaries from real-world red team experience.
- The power of application control tools like Threat Locker and WDAC to block attacker payloads
- Why strong identity controls (MFA, Protected Users Group, least privilege) are critical—and rare
- Real-world risks when admin privileges and service accounts are mismanaged
- How network segmentation and zero trust slow down or block attacker movement
- The value of proactive defenses like deception and baselining EDR for anomalous activity detection
Blog:Â https://offsec.blog/
Youtube:Â https://www.youtube.com/@cyberthreatpov
Twitter:Â https://x.com/cyberthreatpov
Work with Us: https://securit360.com | Find vulnerabilities that matter, learn about how we do internal pentesting here.
Follow Spencer on social ⬇
Spencer’s Links:Â https://spenceralessi.com