We’ll be at RSA Conference 2024! Learn more about Attack Path Management with SpecterOps.
Learn More
Services
PROGRAM DEVELOPMENT
Overview
Developing Capabilities
Expert Support
Assessments
Penetration Testing
Red Team Engagements
Purple Team Assessments
Maturity Assessments
AD Attack Path Assessment
Solutions
BloodHound Enterprise
Training
Adversary Tactics Training Courses
Red Team Operations
Tradecraft Analysis
Detection
Vulnerability Research for Operators
Active Directory Security Fundamentals
Azure Security Fundamentals
Private Training
Talk to us
Partners
SpecterOps
Partner Program
Identify your customers attack paths
before attackers do
Become a Partner
Partner Portal Sign In
About
ABOUT US
Who We Are
Values
Team
Careers
News
Announcements
Newsroom
Resources
White Papers
Case Studies
Sponsored Tools
Vulnerability Acknowledgements
Datasheets
Blog
Events
Sponsored Events
Talks
Training Courses
Webinars
Contact Us
FEATURED BLOG
Final Steps to BloodHound Enterprise for Government— FedRAMP High Compliance
Read Post
See All Posts
All
Blog
Research
Solutions
Search
Blog
Latest Posts
Explore on Medium
9 Min Read | Jun 27
Understanding the Function Call Stack
17 Min Read | Jun 20
Establish security boundaries in your on-prem AD and Azure environment
4 Min Read | Jun 16
Hang Fire: Challenging our Mental Model of Initial Access
4 Min Read | Jun 14
Introducing Ghostwriter v3.0
The Ghostwriter team recently released v3.0.0. This release represents a significant milestone for the project, and there has never been a better time to try out Ghostwriter. Our goal was [...]
8 Min Read | Jun 08
Managed Identity Attack Paths, Part 3: Function Apps
Intro and Prior Work In this three part blog series we have explored attack paths that emerge out of Managed Identity assignments in three Azure services: Automation Accounts, Logic Apps, and [...]
7 Min Read | Jun 07
Managed Identity Attack Paths, Part 2: Logic Apps
Intro and Prior Work In this three part blog series we are exploring attack paths that emerge out of Managed Identity assignments in three Azure services: Automation Accounts, Logic Apps, and [...]
10 Min Read | Jun 06
Managed Identity Attack Paths, Part 1: Automation Accounts
Intro and Prior Work In this three part blog series we will explore attack paths that emerge out of Managed Identity assignments in three Azure services: Automation Accounts, Logic Apps, and [...]
12 Min Read | Jun 01
DeepPass — Finding Passwords With Deep Learning
DeepPass — Finding Passwords With Deep Learning One of the routine tasks operators regularly encounter on most engagements is data mining. While exactly what operators are after varies from environment to environment, there [...]
5 Min Read | May 25
Automating Azure Abuse Research — Part 1
Automating Azure Abuse Research — Part 1 Intro Back in February of 2020 Karl Fosaaen published a great blog post about abusing Managed Identity (MI) assignments, specifically those assigned to a Virtual Machine [...]
PREV
<
5
6
7
8
9
10
11
NEXT
Get Started
Defend Against
Advanced Attacks
Talk to an Expert