Evading Gatekeeper: Initial Access in Enterprise macOS Environments
Introduction During a recent Red Team engagement, we needed a new payload delivery mechanism for a spear phishing campai[...]
Red team & Threat hunting Blog - offensive security
Introduction During a recent Red Team engagement, we needed a new payload delivery mechanism for a spear phishing campai[...]
Introduction When we think of calendar invitations, we often picture attaching .ics files to em[...]
Introduction When we talk about Microsoft SQL Server linked servers, we usually think of links to another SQL Server ins[...]
Introduction During a Red Teaming engagement, the exploitation of vulnerabilities in web apps usually offers a good ch[...]
Introduction In our previous article, we covered an engagement where it was necessary to execute the ESC7 attack to esca[...]
Introduction to AD CS ESC7 Last year, SpecterOps published an in-depth research about the security state in Active Dir[...]
Introduction During a recent Red Team operation got local admin privileges on a workstation where an EDR solution was id[...]
Introduction In one of its operations, the Red Teaming achieved command execution in a perimeter web page as a non-privi[...]
It is both common and important for the development of a Red Teaming service to obtain information about the technologie[...]