BloodHound 8.0 update adds BloodHound OpenGraph — expanding attack path visibility beyond AD and Entra ID. Learn More
blog category

Research & Tradecraft

image for Defeating Device Guard: A look into CVE-2017–0007

Research & Tradecraft

Defeating Device Guard: A look into CVE-2017–0007

By: Matt Nelson
Apr 3, 2017 • 8 min read
Read Post
image for “Fileless” UAC Bypass using sdclt.exe

Research & Tradecraft

“Fileless” UAC Bypass using sdclt.exe

By: Matt Nelson
Mar 17, 2017 • 4 min read
Read Post
image for Pass-the-Hash Is Dead: Long Live LocalAccountTokenFilterPolicy

Research & Tradecraft

Pass-the-Hash Is Dead: Long Live LocalAccountTokenFilterPolicy

By: Will Schroeder
Mar 16, 2017 • 10 min read
Read Post
image for Bypassing UAC using App Paths

Research & Tradecraft

Bypassing UAC using App Paths

By: Matt Nelson
Mar 14, 2017 • 4 min read
Read Post
image for How to Make Communication Profiles for Empire

Research & Tradecraft

How to Make Communication Profiles for Empire

By: Jeff Dimmock
Feb 28, 2017 • 5 min read
Read Post
image for Roasting AS-REPs

Research & Tradecraft

Roasting AS-REPs

By: Will Schroeder
Jan 17, 2017 • 10 min read
Read Post
image for S4U2Pwnage

Research & Tradecraft

S4U2Pwnage

By: Will Schroeder
Jan 5, 2017 • 13 min read
Read Post
image for Cracking the Perimeter (CTP) and OSCE review

Research & Tradecraft

Cracking the Perimeter (CTP) and OSCE review

By: Will Schroeder
Mar 11, 2014 • 3 min read
Read Post