{"id":219408,"date":"2019-05-07T16:28:19","date_gmt":"2019-05-07T14:28:19","guid":{"rendered":"https:\/\/www.intrinsec.com\/?p=219408"},"modified":"2019-05-07T16:28:19","modified_gmt":"2019-05-07T14:28:19","slug":"triple-sec","status":"publish","type":"post","link":"https:\/\/www.intrinsec.com\/en\/triple-sec\/","title":{"rendered":"TripleSec"},"content":{"rendered":"<p class=\"wp-block-paragraph\">Two months ago to the day, Intrinsec had the pleasure of hosting the second TripleSec session.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\"><a href=\"https:\/\/www.triplesec.info\"><\/a><a rel=\"noreferrer noopener\" aria-label=\"TripleSec (opens in a new tab)\" href=\"https:\/\/www.triplesec.info\" target=\"_blank\">TripleSec<\/a> is a French-speaking IT security event (type <a href=\"https:\/\/www.intrinsec.com\/en\/tech-talks\/\" target=\"_blank\" rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\">Tech Talk<\/a>) which aims to introduce three technical topics before discussing them over a drink, with 3 security presentations per session and a buffet offered by the company in which the event will take place.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">The three presentations at this second edition of TripleSec were:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li><a href=\"https:\/\/www.triplesec.info\/slides\/3c567aac7cf04f8646bf126423393434.pdf\" target=\"_blank\" rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\">Bypassing Microsoft JEA role capabilities for fun &amp; profit<\/a><\/li><li>LinkedIn in phishing campaigns <\/li><li> <a href=\"https:\/\/www.intrinsec.com\/wp-content\/uploads\/2019\/05\/TripleSec2-BloodHound_101.pdf\">Introducing BloodHound<\/a><\/li><\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">You can find the programs and presentations from previous TripleSec editions on the <a href=\"https:\/\/www.triplesec.info\/editions-precedentes\" target=\"_blank\" rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\">official website.<\/a><\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><strong>BloodHound 101<\/strong><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">The topic presented by Intrinsec concerned the Active Directory environment mapping tool <a href=\"https:\/\/github.com\/BloodHoundAD\/BloodHound\" target=\"_blank\" rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\">BloodHound<\/a>.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">This tool uses graph theory to reveal hidden and often unintentional relationships within an Active Directory environment. Attackers can use BloodHound to easily identify highly complex paths of compromise that would otherwise be impossible to quickly identify.<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">During this presentation we addressed the following points:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li> Introduction \u2013 Description of the different components of the BloodHound tool and how to use it <\/li><li><em>Cypher Queries<\/em> \u2013 Explanation of the semantics of <em>cypher queries<\/em><\/li><li><em>Analytics Queries<\/em> \u2013 Presentation of <em>cypher queries<\/em> default and customized settings, used particularly during our missions <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.intrinsec.com\/en\/red-team\/\" target=\"_blank\">Red Teaming<\/a> and <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/www.intrinsec.com\/en\/test-intrusion-interne\/\" target=\"_blank\">Internal IT<\/a><\/li><li>RETEX \u2013 Feedback on various Active Directory domain compromise scenarios (exploitation of poor administration practices, incorrect DACL configuration, etc.)<\/li><li>Recommendations \u2013 Presentation of techniques for detecting and reducing residual risks (<a href=\"https:\/\/posts.specterops.io\/introducing-the-adversary-resilience-methodology-part-one-e38e06ffd604\" target=\"_blank\" rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\">Adversary Resilience Methodology<\/a>)<\/li><\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">The slides can be downloaded via the following URL:<\/p>\n\n\n\n<ul class=\"wp-block-list\"><li><a href=\"https:\/\/www.intrinsec.com\/wp-content\/uploads\/2019\/05\/TripleSec2-BloodHound_101.pdf\" target=\"_blank\" rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\">https:\/\/www.intrinsec.com\/wp-content\/uploads\/2019\/05\/TripleSec2-BloodHound_101.pdf<\/a><\/li><\/ul>\n\n\n\n<p class=\"wp-block-paragraph\">A more detailed presentation of BloodHound will be covered in a dedicated article. Stay tuned \ud83d\ude09<\/p>\n\n\n\n<p class=\"wp-block-paragraph\">In the meantime, if you would like more information about the tool and how to use it, please visit the <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/github.com\/BloodHoundAD\/BloodHound\" target=\"_blank\">Official GitHub <\/a>and on the <a rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\" href=\"https:\/\/bloodhoundhq.slack.com\" target=\"_blank\">Dedicated Slack<\/a>, implemented by <a href=\"https:\/\/posts.specterops.io\" target=\"_blank\" rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\">Specterops<\/a>.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\"><strong>Next edition<\/strong><\/h2>\n\n\n\n<p class=\"wp-block-paragraph\">The third edition of TripleSec is scheduled for next week (May 16th) and will take place at our colleagues&#039; website, Onepoint:<\/p>\n\n\n\n<blockquote class=\"wp-block-quote is-layout-flow wp-block-quote-is-layout-flow\"><p>Onepoint Paris, 29 Rue des Sablons, 75116 Paris<\/p><\/blockquote>\n\n\n\n<p class=\"wp-block-paragraph\">All the tickets sold out very quickly, but you can follow all the news about future editions on the official Twitter account. <a href=\"https:\/\/twitter.com\/TripleSec_Conf\" target=\"_blank\" rel=\"noreferrer noopener\" aria-label=\" (opens in a new tab)\">@TripleSec_Conf<\/a>. <\/p>","protected":false},"excerpt":{"rendered":"<p>Two months ago to the day, Intrinsec had the pleasure of hosting the second [\u2026]<\/p>","protected":false},"author":22,"featured_media":219440,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1,13],"tags":[],"class_list":["post-219408","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-non-categorise","category-evaluation-securite"],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v27.0 (Yoast SEO v27.8) - https:\/\/yoast.com\/product\/yoast-seo-premium-wordpress\/ -->\n<title>TripleSec - INTRINSEC<\/title>\n<meta name=\"description\" content=\"Ev\u00e9nement Cybers\u00e9curit\u00e9 : Il y a deux mois jours pour jours, Intrinsec eu le plaisir d&#039;accueillir la deuxi\u00e8me session de TripleSec.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/www.intrinsec.com\/en\/triple-sec\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"TripleSec\" \/>\n<meta property=\"og:description\" content=\"Ev\u00e9nement Cybers\u00e9curit\u00e9 : Il y a deux mois jours pour jours, Intrinsec eu le plaisir d&#039;accueillir la deuxi\u00e8me session de TripleSec.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.intrinsec.com\/en\/triple-sec\/\" \/>\n<meta property=\"og:site_name\" content=\"INTRINSEC\" \/>\n<meta property=\"article:published_time\" content=\"2019-05-07T14:28:19+00:00\" \/>\n<meta name=\"author\" content=\"Walid ARNOULT\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@Intrinsec\" \/>\n<meta name=\"twitter:site\" content=\"@Intrinsec\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Walid ARNOULT\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\\\/\\\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/triple-sec\\\/#article\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/triple-sec\\\/\"},\"author\":{\"name\":\"Walid ARNOULT\",\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/#\\\/schema\\\/person\\\/9dd16d3e1ff8da71d0dc1b9573880ef0\"},\"headline\":\"TripleSec\",\"datePublished\":\"2019-05-07T14:28:19+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/triple-sec\\\/\"},\"wordCount\":435,\"commentCount\":0,\"publisher\":{\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/#organization\"},\"image\":{\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/triple-sec\\\/#primaryimage\"},\"thumbnailUrl\":\"\",\"articleSection\":[\"Non cat\u00e9goris\u00e9\",\"S\u00e9curit\u00e9 offensive &amp; Audit\"],\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"CommentAction\",\"name\":\"Comment\",\"target\":[\"https:\\\/\\\/www.intrinsec.com\\\/triple-sec\\\/#respond\"]}]},{\"@type\":\"WebPage\",\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/triple-sec\\\/\",\"url\":\"https:\\\/\\\/www.intrinsec.com\\\/triple-sec\\\/\",\"name\":\"TripleSec - INTRINSEC\",\"isPartOf\":{\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/triple-sec\\\/#primaryimage\"},\"image\":{\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/triple-sec\\\/#primaryimage\"},\"thumbnailUrl\":\"\",\"datePublished\":\"2019-05-07T14:28:19+00:00\",\"description\":\"Ev\u00e9nement Cybers\u00e9curit\u00e9 : Il y a deux mois jours pour jours, Intrinsec eu le plaisir d'accueillir la deuxi\u00e8me session de TripleSec.\",\"breadcrumb\":{\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/triple-sec\\\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\\\/\\\/www.intrinsec.com\\\/triple-sec\\\/\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/triple-sec\\\/#primaryimage\",\"url\":\"\",\"contentUrl\":\"\"},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/triple-sec\\\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Accueil\",\"item\":\"https:\\\/\\\/www.intrinsec.com\\\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"TripleSec\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/#website\",\"url\":\"https:\\\/\\\/www.intrinsec.com\\\/\",\"name\":\"INTRINSEC\",\"description\":\"Notre m\u00e9tier , Prot\u00e9ger le v\u00f4tre\",\"publisher\":{\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\\\/\\\/www.intrinsec.com\\\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/#organization\",\"name\":\"INTRINSEC\",\"alternateName\":\"ISEC\",\"url\":\"https:\\\/\\\/www.intrinsec.com\\\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/#\\\/schema\\\/logo\\\/image\\\/\",\"url\":\"https:\\\/\\\/www.intrinsec.com\\\/wp-content\\\/uploads\\\/2025\\\/02\\\/libellule.png\",\"contentUrl\":\"https:\\\/\\\/www.intrinsec.com\\\/wp-content\\\/uploads\\\/2025\\\/02\\\/libellule.png\",\"width\":1322,\"height\":1322,\"caption\":\"INTRINSEC\"},\"image\":{\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/#\\\/schema\\\/logo\\\/image\\\/\"},\"sameAs\":[\"https:\\\/\\\/x.com\\\/Intrinsec\",\"https:\\\/\\\/fr.linkedin.com\\\/company\\\/intrinsec\",\"https:\\\/\\\/www.youtube.com\\\/channel\\\/UC0trUZAHNZOUbxYnNdecM4A\"],\"description\":\"soci\u00e9t\u00e9 de consulting, pure player cybers\u00e9curit\u00e9 fran\u00e7ais et europ\u00e9en depuis plus de 30ans, sp\u00e9cialiste dans la s\u00e9curit\u00e9 offensive & audit (pentest\\\/red team), GRC, et services IMSS comme le SOC, CTI et CERT Intrinsec est qualifi\u00e9 PASSI Elev\u00e9, PRIS Elev\u00e9 et PACS par l'ANSSI\",\"email\":\"contact@intrinsec.com\"},{\"@type\":\"Person\",\"@id\":\"https:\\\/\\\/www.intrinsec.com\\\/#\\\/schema\\\/person\\\/9dd16d3e1ff8da71d0dc1b9573880ef0\",\"name\":\"Walid ARNOULT\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/?s=96&d=retro&r=g\",\"url\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/?s=96&d=retro&r=g\",\"contentUrl\":\"https:\\\/\\\/secure.gravatar.com\\\/avatar\\\/?s=96&d=retro&r=g\",\"caption\":\"Walid ARNOULT\"},\"url\":\"https:\\\/\\\/www.intrinsec.com\\\/en\\\/author\\\/walid-arnoult\\\/\"}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"TripleSec - INTRINSEC","description":"Cybersecurity Event: Two months ago to the day, Intrinsec had the pleasure of hosting the second TripleSec session.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/www.intrinsec.com\/en\/triple-sec\/","og_locale":"en_US","og_type":"article","og_title":"TripleSec","og_description":"Ev\u00e9nement Cybers\u00e9curit\u00e9 : Il y a deux mois jours pour jours, Intrinsec eu le plaisir d'accueillir la deuxi\u00e8me session de TripleSec.","og_url":"https:\/\/www.intrinsec.com\/en\/triple-sec\/","og_site_name":"INTRINSEC","article_published_time":"2019-05-07T14:28:19+00:00","author":"Walid ARNOULT","twitter_card":"summary_large_image","twitter_creator":"@Intrinsec","twitter_site":"@Intrinsec","twitter_misc":{"Written by":"Walid ARNOULT","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.intrinsec.com\/triple-sec\/#article","isPartOf":{"@id":"https:\/\/www.intrinsec.com\/triple-sec\/"},"author":{"name":"Walid ARNOULT","@id":"https:\/\/www.intrinsec.com\/#\/schema\/person\/9dd16d3e1ff8da71d0dc1b9573880ef0"},"headline":"TripleSec","datePublished":"2019-05-07T14:28:19+00:00","mainEntityOfPage":{"@id":"https:\/\/www.intrinsec.com\/triple-sec\/"},"wordCount":435,"commentCount":0,"publisher":{"@id":"https:\/\/www.intrinsec.com\/#organization"},"image":{"@id":"https:\/\/www.intrinsec.com\/triple-sec\/#primaryimage"},"thumbnailUrl":"","articleSection":["Non cat\u00e9goris\u00e9","S\u00e9curit\u00e9 offensive &amp; Audit"],"inLanguage":"en-US","potentialAction":[{"@type":"CommentAction","name":"Comment","target":["https:\/\/www.intrinsec.com\/triple-sec\/#respond"]}]},{"@type":"WebPage","@id":"https:\/\/www.intrinsec.com\/triple-sec\/","url":"https:\/\/www.intrinsec.com\/triple-sec\/","name":"TripleSec - INTRINSEC","isPartOf":{"@id":"https:\/\/www.intrinsec.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/www.intrinsec.com\/triple-sec\/#primaryimage"},"image":{"@id":"https:\/\/www.intrinsec.com\/triple-sec\/#primaryimage"},"thumbnailUrl":"","datePublished":"2019-05-07T14:28:19+00:00","description":"Cybersecurity Event: Two months ago to the day, Intrinsec had the pleasure of hosting the second TripleSec session.","breadcrumb":{"@id":"https:\/\/www.intrinsec.com\/triple-sec\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.intrinsec.com\/triple-sec\/"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.intrinsec.com\/triple-sec\/#primaryimage","url":"","contentUrl":""},{"@type":"BreadcrumbList","@id":"https:\/\/www.intrinsec.com\/triple-sec\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Accueil","item":"https:\/\/www.intrinsec.com\/"},{"@type":"ListItem","position":2,"name":"TripleSec"}]},{"@type":"WebSite","@id":"https:\/\/www.intrinsec.com\/#website","url":"https:\/\/www.intrinsec.com\/","name":"INTRINSEC","description":"Our job is to protect yours.","publisher":{"@id":"https:\/\/www.intrinsec.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.intrinsec.com\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/www.intrinsec.com\/#organization","name":"INTRINSEC","alternateName":"ISEC","url":"https:\/\/www.intrinsec.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/www.intrinsec.com\/#\/schema\/logo\/image\/","url":"https:\/\/www.intrinsec.com\/wp-content\/uploads\/2025\/02\/libellule.png","contentUrl":"https:\/\/www.intrinsec.com\/wp-content\/uploads\/2025\/02\/libellule.png","width":1322,"height":1322,"caption":"INTRINSEC"},"image":{"@id":"https:\/\/www.intrinsec.com\/#\/schema\/logo\/image\/"},"sameAs":["https:\/\/x.com\/Intrinsec","https:\/\/fr.linkedin.com\/company\/intrinsec","https:\/\/www.youtube.com\/channel\/UC0trUZAHNZOUbxYnNdecM4A"],"description":"Intrinsec, a consulting firm and pure-play French and European cybersecurity provider for over 30 years, specializes in offensive security and auditing (penetration testing\/red teams), GRC, and IMSS services such as SOC, CTI, and CERT. Intrinsec is qualified at PASSI High, PRIS High, and PACS levels by ANSSI.","email":"contact@intrinsec.com"},{"@type":"Person","@id":"https:\/\/www.intrinsec.com\/#\/schema\/person\/9dd16d3e1ff8da71d0dc1b9573880ef0","name":"Walid ARNOULT","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/?s=96&d=retro&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/?s=96&d=retro&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/?s=96&d=retro&r=g","caption":"Walid ARNOULT"},"url":"https:\/\/www.intrinsec.com\/en\/author\/walid-arnoult\/"}]}},"_links":{"self":[{"href":"https:\/\/www.intrinsec.com\/en\/wp-json\/wp\/v2\/posts\/219408","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.intrinsec.com\/en\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.intrinsec.com\/en\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.intrinsec.com\/en\/wp-json\/wp\/v2\/users\/22"}],"replies":[{"embeddable":true,"href":"https:\/\/www.intrinsec.com\/en\/wp-json\/wp\/v2\/comments?post=219408"}],"version-history":[{"count":0,"href":"https:\/\/www.intrinsec.com\/en\/wp-json\/wp\/v2\/posts\/219408\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.intrinsec.com\/en\/wp-json\/wp\/v2\/media?parent=219408"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.intrinsec.com\/en\/wp-json\/wp\/v2\/categories?post=219408"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.intrinsec.com\/en\/wp-json\/wp\/v2\/tags?post=219408"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}