Services
PROGRAM DEVELOPMENT
Overview
Developing Capabilities
Expert Support
Assessments
Penetration Testing
Red Team Engagements
Purple Team Assessments
Maturity Assessments
Solutions
BloodHound Enterprise
Training
Adversary Tactics Training Courses
Red Team Operations
Tradecraft Analysis
Detection
Vulnerability Research for Operators
Active Directory Security Fundamentals
Azure Security Fundamentals
Private Training
Talk to us
About
ABOUT US
Who We Are
Values
Team
Careers
News
Announcements
Newsroom
Resources
White Papers
Case Studies
Sponsored Tools
Vulnerability Acknowledgements
Datasheets
Blog
Events
Sponsored Events
Talks
Training Courses
Webinars
Contact Us
FEATURED BLOG
Your new best friend: Introducing BloodHound Community Edition
Read Post
See All Posts
All
Blog
Research
Solutions
Search
Blog
Latest Posts
Explore on Medium
10 Min Read | May 10
C2 and the Docker Dance: Mythic 3.0’s Marvelous Microservice Moves
— Title by ChatGPT for introducing Mythic 3.0 What is Mythic? Mythic is a plug-n-play command and control (C2) framework that heavily leverages Docker and a microservice architecture where new agents, communication [...]
8 Min Read | May 03
Exploring Impersonation through the Named Pipe Filesystem Driver
11 Min Read | Apr 18
Introducing BloodHound 4.3 — Get Global Admin More Often
18 Min Read | Mar 29
I’d TAP That Pass
6 Min Read | Mar 15
Uncovering Windows Events
Threat Intelligence ETW Not all manifest-based Event Tracing for Windows (ETW) providers that are exposed through Windows are ingested into telemetry sensors/EDR’s. One provider commonly that is leveraged by vendors [...]
9 Min Read | Feb 15
Abusing Azure App Service Managed Identity Assignments
Intro Azure App Service is a Platform-as-a-Service product that promises to improve web application deployment, hosting, availability, and security. Web Apps hosted by Azure App Service are organized into Azure [...]
8 Min Read | Feb 10
Telemetry Layering
Introduction Creating detections can be challenging. There often isn’t a “simple” way to detect something, and once we see an event that seems to correlate with the activity we are [...]
3 Min Read | Feb 08
Ghostwriter v3.2 Release
15 Min Read | Jan 25
At the Edge of Tier Zero: The Curious Case of the RODC
PREV
1
2
3
4
5
6
7
>
NEXT
Get Started
Defend Against
Advanced Attacks
Talk to an Expert