blog category

Research & Tradecraft

Offensive Security Guide to SSH Tunnels and Proxies

Apr 22, 2021 • 0 min read

Read Post

Research & Tradecraft

Introducing BloodHound 4.0: The Azure Update

Nov 20, 2020 • 0 min read

Read Post

Research & Tradecraft

Ghostwriter v2.0 Release

Nov 20, 2020 • 0 min read

Read Post

Research & Tradecraft

Death from Above: Lateral Movement from Azure to On-Prem AD

Intro I’ve been looking into Azure attack primitives over the past couple of months to gain...

Aug 17, 2020 • 13 min read

Read Post

Research & Tradecraft

Requesting Azure AD Request Tokens on Azure-AD-joined Machines for Browser SSO

RequestAADRefreshToken is a tool that returns OAuth 2.0 refresh tokens for an Azure-AD-authenticated Windows user (i.e. the machine is joined to...

Jul 14, 2020 • 9 min read

Read Post

Research & Tradecraft

Move faster, Stay longer

Jan 27, 2020 • 0 min read

Read Post

Research & Tradecraft

Revisiting Remote Desktop Lateral Movement

It’s no secret that attackers are looking for new techniques to execute lateral movement. However, there...

Jan 22, 2020 • 0 min read

Read Post

Research & Tradecraft

Merlin v0.8.0 Released

Aug 28, 2019 • 0 min read

Read Post

Research & Tradecraft

Merlin Goes OPAQUE for Key Exchange

Aug 20, 2019 • 0 min read

Read Post

Prev 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 Next

blog category

Research & Tradecraft

Apr 22, 2021 • 0 min read

Nov 20, 2020 • 0 min read

Nov 20, 2020 • 0 min read

Aug 17, 2020 • 13 min read

Jul 14, 2020 • 9 min read

Jan 27, 2020 • 0 min read

Jan 22, 2020 • 0 min read

Aug 28, 2019 • 0 min read

Aug 20, 2019 • 0 min read

Sign Up For Updates From SpecterOps