From talks to training to our Kennel Club, SpecterOps will be forefront at Black Hat USA Learn more

SpecterOps Blog

Filters

Categories

Clear all
Clear Search
SpecterOps and OpenAI: Helping to Build a New Security Frontier with Daybreak   

AI & Security

SpecterOps and OpenAI: Helping to Build a New Security Frontier with Daybreak   

Today, OpenAI announced that it is expanding access to its frontier AI cybersecurity capabilities for a trusted circle of industry…

Read More
Make Sure to Use SOAP(y) – An Operators Guide to Stealthy AD Collection Using ADWS

Research & Tradecraft

Make Sure to Use SOAP(y) – An Operators Guide to Stealthy AD Collection Using ADWS

Learn how to perform stealthy recon of Active Directory environments over ADWS for Red Team Assessments

By: Logan Goins

16 mins
Privilege Zones: BloodHound Enterprise spreading like a computer virus (of security)

BloodHound

Privilege Zones: BloodHound Enterprise spreading like a computer virus (of security)

TL;DR The BloodHound Enterprise team recently pushed out Privilege Zones, one of the most requested features from our clients. Here’s…

By: Irshad Ajmal Ahmed

5 mins
Untrustworthy Trust Builders: Account Operators Replicating Trust Attack (AORTA)

Research & Tradecraft

Untrustworthy Trust Builders: Account Operators Replicating Trust Attack (AORTA)

TL;DR The Incoming Forest Trust Builders group (not AdminSDHolder protected) can create inbound forest trusts with ticket-granting ticket (TGT) delegation…

By: Jonas Bülow Knudsen

20 mins
Good Fences Make Good Neighbors: New AD Trusts Attack Paths in BloodHound

BloodHound

Good Fences Make Good Neighbors: New AD Trusts Attack Paths in BloodHound

TL;DR The ability of an attacker controlling one domain to compromise another through an Active Directory (AD) trust depends on…

By: Jonas Bülow Knudsen

24 mins
Getting the Most Value Out of the OSCP: After the Exam

Industry Insights

Getting the Most Value Out of the OSCP: After the Exam

TL;DR In the final post of this series, I’ll discuss what to do after your latest exam attempt to get…

By: Kieran Croucher

20 mins
Understanding & Mitigating BadSuccessor

Research & Tradecraft

Understanding & Mitigating BadSuccessor

TL;DR: BadSuccessor is a new AD attack primitive that abuses dMSAs, allowing an attacker who can modify or create a…

By: Jim Sykora

24 mins
Getting the Most Value Out of the OSCP: The Exam

Industry Insights

Getting the Most Value Out of the OSCP: The Exam

TL;DR A practical guide to maximizing the short- and long-term benefits of your upcoming OSCP exam attempt(s). Introduction In the…

By: Kieran Croucher

19 mins
Do You Own Your Permissions, or Do Your Permissions Own You?

Research & Tradecraft

Do You Own Your Permissions, or Do Your Permissions Own You?

tl;dr: Less FPs for Owns/WriteOwner and new Owns/WriteOwnerLimitedRights edges Before we get started, if you’d prefer to listen to a…

By: Chris Thompson

8 mins
Getting the Most Value Out of the OSCP: The PEN-200 Labs

Industry Insights

Getting the Most Value Out of the OSCP: The PEN-200 Labs

TL;DR How to leverage the PEN-200 simulated black-box penetration testing scenarios for maximal self-improvement and career success. Introduction In the…

By: Kieran Croucher

16 mins

Sign up for the latest updates

"*" indicates required fields

This field is for validation purposes and should be left unchanged.

Sign Up For Updates From SpecterOps

By clicking Sign Up you're confirming that you agree with our Terms and Conditions.