notes

5 - AD Persistence

Golden, Silver, Diamond Tickets, Custom SSP, ACLs abuses and More

18 Dec 2023

10 minute read

notes

4 - Offensive .NET

Use Minimal obfuscation and String manipulation to bypass Win Defender

17 Dec 2023

3 minute read

notes

3 - Lateral Movement

PowerShell Remoting, Mimikatz, Over Pass the hash and More

16 Dec 2023

3 minute read

notes

2 - Win Privesc

Unquoted Paths and Modifiable Services

15 Dec 2023

1 minute read

notes

1 - AD Enumeration

Learn how to enumerate the Domain, ACLs, GPOs, Trusts and More

14 Dec 2023

9 minute read

review

CRTP Review

Certified Red Team Professional

13 Dec 2023

less than 1 minute read

notes

4 - Windows Lateral Movement

Intro to Windows Lateral Movement

12 Dec 2023

3 minute read

notes

3 - Windows Privesc

Intro to Windows Privesc

12 Dec 2023

1 minute read

notes

2 - Bloodhound

BloodHound is a versatile and powerful tool for AD enumeration and analysis.

11 Dec 2023

3 minute read

notes

1 - Powershell

Starting with Powershell for AD Exploitation!

08 Dec 2023

4 minute read

notes

15 - Attacking LDAP

First the Fundamentals, then Exploitation!

07 Dec 2023

7 minute read

notes

14 - APIs & Cloud Apps

Attacking APIs & Cloud Based Applications

06 Dec 2023

23 minute read

notes

13 - Authentication & SSO

Attacking JWT, OAuth, SAML and Bypassing 2FA

05 Dec 2023

15 minute read

notes

12 - Attacking Crypto

Padding Oracle, Hash Length Extension, Leveraging MachineKey and More

04 Dec 2023

10 minute read

notes

11 - Server Side Attacks

SSRF, SSI, XSLT attacks and More

03 Dec 2023

27 minute read

Nullified

Recent posts

5 - AD Persistence

4 - Offensive .NET

3 - Lateral Movement

2 - Win Privesc

1 - AD Enumeration

CRTP Review

4 - Windows Lateral Movement

3 - Windows Privesc

2 - Bloodhound

1 - Powershell

15 - Attacking LDAP

14 - APIs & Cloud Apps

13 - Authentication & SSO

12 - Attacking Crypto

11 - Server Side Attacks