Protect mission-critical assets from identity compromise with new Privilege Zones in BloodHound Enterprise. Learn More
Get a Demo
blog category

Blog

image for LLMentary, My Dear Claude: Prompt Engineering an LLM to Perform Word-to-Markdown Conversion for Templated Content

Research & Tradecraft

LLMentary, My Dear Claude: Prompt Engineering an LLM to Perform Word-to-Markdown Conversion for Templated Content

While LLMs can expedite parts of the technical writing/editing process, these tools still require human oversight...

By: Sarah Miles
Jun 20, 2025 • 11 min read
Read Post
image for Ghostwriter v6: Introducing Collaborative Editing

Company Updates

Ghostwriter v6: Introducing Collaborative Editing

TL;DR: Ghostwriter now supports real-time collaborative editing for observations, findings, and report fields using the YJS...

By: Christopher Maddalena, Alex Parrill
Jun 18, 2025 • 9 min read
Read Post
image for Introducing the BloodHound Query Library

BloodHound

Introducing the BloodHound Query Library

TL;DR The BloodHound Query Library is a community-driven collection of Cypher queries designed to help BloodHound...

By: Martin Sohn Christensen, Joey Dreijer
Jun 17, 2025 • 6 min read
Read Post
image for Making Least Privilege Real: Previewing Privilege Zones in BloodHound Enterprise

BloodHound

Making Least Privilege Real: Previewing Privilege Zones in BloodHound Enterprise

TL;DR Most organizations assume they’ve implemented least privilege, but assumptions don’t stop attackers. Privilege Zones in...

By: Justin Kohler
Jun 16, 2025 • 8 min read
Read Post
image for OneLogin, Many Issues: How I Pivoted from a Trial Tenant to Compromising Customer Signing Keys

Research & Tradecraft

OneLogin, Many Issues: How I Pivoted from a Trial Tenant to Compromising Customer Signing Keys

TL;DR OneLogin was found to have security vulnerabilities in its AD Connector service that exposed authentication...

By: Julian Catrambone
Jun 10, 2025 • 11 min read
Read Post
image for Update: Dumping Entra Connect Sync Credentials

Research & Tradecraft

Update: Dumping Entra Connect Sync Credentials

TL;DR Microsoft has recently changed how Entra Connect Sync authenticates to Entra ID. This blog post...

By: Daniel Heinsen
Jun 9, 2025 • 10 min read
Read Post
image for Chatting with Your Attack Paths: An MCP for BloodHound

BloodHound

Chatting with Your Attack Paths: An MCP for BloodHound

TL;DR In an effort to learn about Model Context Protocol servers, I created a MCP server...

By: Matthew Nickerson
Jun 4, 2025 • 22 min read
Read Post
image for Tokenization Confusion

Research & Tradecraft

Tokenization Confusion

TL;DR Tokenization Confusion: We look at the new Prompt Guard 2 model from Meta, how “confusing”...

By: Adam Chester
Jun 3, 2025 • 20 min read
Read Post
image for Getting the Most Value Out of the OSCP: After the Exam

Industry Insights

Getting the Most Value Out of the OSCP: After the Exam

TL;DR In the final post of this series, I’ll discuss what to do after your latest...

By: Kieran Croucher
Jun 2, 2025 • 20 min read
Read Post