Early bird registration for SO-CON 2026 is now open!  Register Now
blog category

Research & Tradecraft

image for Thoughts on Host-based Detection Techniques

Research & Tradecraft

Thoughts on Host-based Detection Techniques

By: Jared Atkinson
Oct 6, 2017 • 8 min read
Read Post
image for The PowerView PowerUsage Series #3

Research & Tradecraft

The PowerView PowerUsage Series #3

By: Will Schroeder
Sep 19, 2017 • 3 min read
Read Post
image for Lateral Movement using Excel.Application and DCOM

Research & Tradecraft

Lateral Movement using Excel.Application and DCOM

By: Matt Nelson
Sep 11, 2017 • 6 min read
Read Post
image for Hunting With Active Directory Replication Metadata

Research & Tradecraft

Hunting With Active Directory Replication Metadata

By: Will Schroeder
Sep 6, 2017 • 15 min read
Read Post
image for Randomized Malleable C2 Profiles Made Easy

Research & Tradecraft

Randomized Malleable C2 Profiles Made Easy

By: Jeff Dimmock
Aug 29, 2017 • 6 min read
Read Post
image for UMCI vs Internet Explorer: Exploring CVE-2017–8625

Research & Tradecraft

UMCI vs Internet Explorer: Exploring CVE-2017–8625

By: Matt Nelson
Aug 24, 2017 • 3 min read
Read Post
image for The PowerView PowerUsage Series #2

Research & Tradecraft

The PowerView PowerUsage Series #2

By: Will Schroeder
Aug 16, 2017 • 2 min read
Read Post
image for Attack Infrastructure Log Aggregation and Monitoring

Research & Tradecraft

Attack Infrastructure Log Aggregation and Monitoring

By: Jeff Dimmock
Aug 7, 2017 • 9 min read
Read Post
image for WSH Injection: A Case Study

Research & Tradecraft

WSH Injection: A Case Study

By: Matt Nelson
Aug 3, 2017 • 4 min read
Read Post