blog category
Research & Tradecraft
Research & Tradecraft
Mythic 2.3 — An Interface Reborn
Mythic 2.3 — An Interface Reborn New Mythic Search Mythic started off as a proof of concept, open source...
By: Cody Thomas
Jan 31, 2022 • 13 min read
Read Post
Research & Tradecraft
Ghostwriter: Looking Back at 2021
It has been a while since we last published details about the Ghostwriter project, but the...
By: Christopher Maddalena
Dec 22, 2021 • 6 min read
Read Post
Research & Tradecraft
Capability Abstraction Case Study: Detecting Malicious Boot Configuration Modifications
By: Michael Barclay
Nov 9, 2021 • 24 min read
Read Post
Research & Tradecraft
AWS ReadOnlyAccess: Not Even Once
By: Daniel Heinsen
Aug 27, 2021 • 9 min read
Read Post
Research & Tradecraft
Entity Based Detection Engineering with BloodHound Enterprise
Critical Attack Path with Auditing Table of Contents Introduction Enterprise Access Model BloodHound and Detection BloodHound Enterprise Entity Based...
By: Joshua Prager
Aug 18, 2021 • 13 min read
Read Post
Research & Tradecraft
Playing Detection with a Full Deck
By: Jared Atkinson
Aug 16, 2021 • 12 min read
Read Post
Research & Tradecraft
L;DR Active Directory Certificate Services has a lot of attack potential! Check out our whitepaper “Certified Pre-Owned:...
By: Will Schroeder
Jun 17, 2021 • 28 min read
Read Post
Research & Tradecraft
Shadow Credentials: Abusing Key Trust Account Mapping for Account Takeover