blog category
Industry Insights
Industry Insights
Getting the Most Value Out of the OSCP: Pre-Course Prep
TL;DR The first post in a five-part practical guide series on maximizing the professional, educational, and...
By: Kieran Croucher
Feb 12, 2025 • 20 min read
Read Post
Industry Insights
Entra Connect Attacker Tradecraft: Part 2
Now that we know how to add credentials to an on-premises user, lets pose a question:...
By: Daniel Heinsen
Jan 22, 2025 • 11 min read
Read Post
Industry Insights
Demystify Active Directory Certification Services (AD CS) Components
By: Youssef Kaiboussi
Dec 20, 2024 • 6 min read
Read Post
Industry Insights
Attacking Entra Metaverse: Part 1
This is part one in a two (maybe three…) part series regarding attacker tradecraft around the...
By: Daniel Heinsen
Dec 13, 2024 • 8 min read
Read Post
Industry Insights
PHISHING SCHOOL A Decade of Distilled Phishing Wisdom I decided to give away all of my phishing...
By: forrest kasler
Aug 21, 2024 • 5 min read
Read Post
Industry Insights
Hiding C2 With Stealthy Callback Channels Write a custom command and control (C2) implant — Check...
By: forrest kasler
Aug 14, 2024 • 12 min read
Read Post
Industry Insights
PHISHING SCHOOL Making Your Malware Look Legit to Bypasses EDR I wanted to write this blog about...
By: forrest kasler
Jul 30, 2024 • 8 min read
Read Post
Industry Insights
PHISHING SCHOOL How to Make Your Phishing Sites Blend In As you read this, bots are coming...
By: forrest kasler
Jul 9, 2024 • 12 min read
Read Post
Industry Insights
An AWS Administrator Identity Crisis: Part 1
BLUF: Every attack path needs a destination. This is a formalized way of describing destinations in...