Black Hills Information Security
Professional Red Teaming & Webcasts

BHIS is the channel I trust most for content that’s grounded in what actually happens on real engagements, rather than a curated CTF box. Because they’re a working consultancy, their webcasts talk about Active Directory attack paths and cloud misconfigurations the way I actually encounter them in my own lab — messy, environment-specific, and full of the small missteps that don’t show up in a clean walkthrough.
Their Active Directory content in particular feeds directly into my Bloodhound work — watching them explain an attack path in a real client environment gives me a second way to reason about the graphs I build myself, instead of only trusting the tool’s output. And their “Backdoors & Breaches” format, which pairs an attack with the detection that should have caught it, is genuinely training-grade material for thinking like both the red and blue side in the same sitting.
What I get out of BHIS long-term is calibration: a sense of what a “real” attack path looks like versus a lab-sanitized one, which keeps my own homelab testing honest.