From talks to training to our Kennel Club, SpecterOps will be forefront at Black Hat USA Learn more

SpecterOps Blog

Filters

Categories

Clear all
Clear Search
SpecterOps and OpenAI: Helping to Build a New Security Frontier with Daybreak   

AI & Security

SpecterOps and OpenAI: Helping to Build a New Security Frontier with Daybreak   

Today, OpenAI announced that it is expanding access to its frontier AI cybersecurity capabilities for a trusted circle of industry…

Read More
Disposable Tooling: Building LLM-Generated Mythic Agents from Prompt to Deployment

Research & Tradecraft

Disposable Tooling: Building LLM-Generated Mythic Agents from Prompt to Deployment

An area I’ve been very interested in exploring over the past several months is the generation of what I have…

By: Adam Chester

25 mins
SpecterOps and OpenAI: Helping to Build a New Security Frontier with Daybreak   

AI & Security

SpecterOps and OpenAI: Helping to Build a New Security Frontier with Daybreak   

Today, OpenAI announced that it is expanding access to its frontier AI cybersecurity capabilities for a trusted circle of industry…

By: Jared Atkinson

6 mins
Oops, I Weaponized the Database: Abusing AI Features in SQL Server 2025

Research & Tradecraft

Oops, I Weaponized the Database: Abusing AI Features in SQL Server 2025

TL;DR: Microsoft SQL Server 2025 AI features provide a practical channel for data exfiltration and C2 transport within the database…

By: Justin Kalnasy

21 mins
Ghostwriter v7: Safer Tokens, Scoped Access, and Better Automation

Research & Tradecraft

Ghostwriter v7: Safer Tokens, Scoped Access, and Better Automation

TL;DR: Ghostwriter v7 is a major step forward for authentication and automation. This release replaces user-managed JWT API tokens with…

By: Christopher Maddalena

6 mins
MSSQLHound Now Available in Go

BloodHound

MSSQLHound Now Available in Go

TL;DR: Javier Azofra and I vibe-ported MSSQLHound to Go to drastically improve run duration, enable cross-platform execution, support SOCKS proxying…

By: Chris Thompson

3 mins
Mythos, Machine-Speed Exploitation, and the Growing Importance of Identity Attack Paths

AI & Security

Mythos, Machine-Speed Exploitation, and the Growing Importance of Identity Attack Paths

When Anthropic announced Mythos and the associated rollout plan, it sparked an immediate wave of discussion across the cybersecurity community.…

By: Jared Atkinson

9 mins
AI Red Teaming Still Comes Back to Identity, Access, and Attack Paths 

AI & Security

AI Red Teaming Still Comes Back to Identity, Access, and Attack Paths 

Most enterprise AI system risk is not a novel model failure; it’s familiar security failure modes showing up in systems…

By: Russel Van Tuyl

10 mins
Expanding Attack Path Management to macOS Environments

BloodHound

Expanding Attack Path Management to macOS Environments

Introduction Attack path management has historically focused on identity systems like Active Directory and Entra ID. That focus made sense.…

By: Jared Atkinson

11 mins
JamfHound v1.1 Update: SSO Attack Paths and Okta Additions

Research & Tradecraft

JamfHound v1.1 Update: SSO Attack Paths and Okta Additions

TL;DR : New SSO Attack Paths and Okta Edges in JamfHound: Updates have been added to the JamfHound OpenGraph collector…

By: Lance B. Cain

10 mins

Sign up for the latest updates

"*" indicates required fields

This field is for validation purposes and should be left unchanged.

Sign Up For Updates From SpecterOps

By clicking Sign Up you're confirming that you agree with our Terms and Conditions.