blog category
Research & Tradecraft
Research & Tradecraft
Further Adventures With CMPivot — Client Coercion
Further Adventures With CMPivot — Client Coercion Perfectly Generated AI Depiction based on Title TL:DR CMPivot queries can be used...
Feb 3, 2025 • 8 min read
Read Post
Research & Tradecraft
On Detection: Tactical to Functional Why it is Difficult to Say What a Tool Does Introduction Over...
Jan 13, 2025 • 17 min read
Read Post
Research & Tradecraft
Part 15: Function Type Categories
On Detection: Tactical to Functional Seven Ways to View API Functions Introduction Welcome back to Part...
Jan 7, 2025 • 24 min read
Read Post
Research & Tradecraft
ADFS — Living in the Legacy of DRS
ADFS — Living in the Legacy of DRS It’s no secret that Microsoft have been trying to move customers...
Jan 7, 2025 • 32 min read
Read Post
Research & Tradecraft
Misconfiguration Manager: Detection Updates
TL;DR: The Misconfiguration Manager DETECT section has been updated with relevant guidance to help defensive operators...
Dec 16, 2024 • 7 min read
Read Post
Research & Tradecraft
SPA is for Single-Page Abuse! – Using Single-Page Application Tokens to Enumerate Azure
Author: Lance B. Cain Overview Microsoft Azure is a leading cloud provider offering technology solutions to companies,...
Dec 10, 2024 • 9 min read
Read Post
Research & Tradecraft
Azure Key Vault Tradecraft with BARK
Brief This post details the existing and new functions in BARK that support adversarial tradecraft research...
Nov 20, 2024 • 8 min read
Read Post
Research & Tradecraft
Maestro: Abusing Intune for Lateral Movement Over C2
If I have a command and control (C2) agent on an Intune admin’s workstation, I should...
Oct 31, 2024 • 13 min read
Read Post
Research & Tradecraft
TL;DR: BOFHound can now parse Active Directory Certificate Services (AD CS) objects, manually queried from LDAP,...