blog category
Research & Tradecraft
Research & Tradecraft
F’Awk Yeah! Advanced sed and awk Usage (Parsing for Pentesters 3)
By: Jeff Dimmock
Oct 23, 2020 • 18 min read
Read Post
Research & Tradecraft
Updates to Ghostwriter: UI and Operation Logs
By: Daniel Heinsen
Sep 30, 2020 • 7 min read
Read Post
Research & Tradecraft
Detections of Past, Present, and Future
By: Robby Winchester
Sep 16, 2020 • 7 min read
Read Post
Research & Tradecraft
Death from Above: Lateral Movement from Azure to On-Prem AD
Intro I’ve been looking into Azure attack primitives over the past couple of months to gain...
By: BloodHound Team
Aug 17, 2020 • 13 min read
Read Post
Research & Tradecraft
A Change of Mythic Proportions
By: Cody Thomas
Aug 13, 2020 • 7 min read
Read Post
Research & Tradecraft
Persistent AWS access with role chain juggling
By: Daniel Heinsen
Jul 16, 2020 • 7 min read
Read Post
Research & Tradecraft
Requesting Azure AD Request Tokens on Azure-AD-joined Machines for Browser SSO
RequestAADRefreshToken is a tool that returns OAuth 2.0 refresh tokens for an Azure-AD-authenticated Windows user (i.e. the machine is joined to...
By: BloodHound Team
Jul 14, 2020 • 8 min read
Read Post
Research & Tradecraft
Attacking FreeIPA — Part IV: CVE-2020–10747
I was informed on Wednesday June 17th 2020 that CVE 2020–10747 was revoked after it had...