Research & Tradecraft

Research & Tradecraft

Man in the Terminal

Summary By using path hijacking and modification on Unix-like machines, we can achieve pseudo-keylogging functionality by...

By: Dwight Hohnstein

Apr 5, 2021 • 7 min read

Research & Tradecraft

Hacking with Haskell

By: Max Harley

Jan 5, 2021 • 5 min read

Research & Tradecraft

Hands in the Cookie Jar: Dumping Cookies with Chromium’s Remote Debugger Port

Introduction EDIT 7/16/23: Chromium added protections against this technique. Additional details can be found here: https://slyd0g.medium.com/debugging-cookie-dumping-failures-with-chromiums-remote-debugger-8a4c4d19429f This...

By: Justin Bui

Dec 17, 2020 • 13 min read

Research & Tradecraft

Adventures in Dynamic Evasion

Most teams I have worked with rely heavily on anecdotal evidence when it comes to evasion....

By: Matt Hand

Dec 7, 2020 • 12 min read

Research & Tradecraft

Introducing BloodHound 4.0: The Azure Update

By: Andy Robbins

Nov 20, 2020 • 7 min read

Research & Tradecraft

Ghostwriter v2.0 Release

By: Christopher Maddalena

Nov 20, 2020 • 9 min read

Research & Tradecraft

Apollo and Mythic: A Myth Worth Retelling

Introduction Earlier this week, I released a new Windows agent for Mythic — Apollo. Apollo is a .NET Framework agent...

By: Dwight Hohnstein

Nov 12, 2020 • 15 min read

Research & Tradecraft

Sharing the Myth

By: Cody Thomas

Nov 9, 2020 • 4 min read

Research & Tradecraft

F’Awk Yeah! Advanced sed and awk Usage (Parsing for Pentesters 3)

By: Jeff Dimmock

Oct 23, 2020 • 18 min read