Kevin Mandia, Founder of Mandiant, to Deliver Featured Keynote at SO-CON 2026. Learn More
blog category

Research & Tradecraft

image for Reviving DDE: Using OneNote and Excel for Code Execution

Research & Tradecraft

Reviving DDE: Using OneNote and Excel for Code Execution

By: Matt Nelson
Jan 29, 2018 • 7 min read
Read Post
image for Cobalt Strike OPSEC Profiles

Research & Tradecraft

Cobalt Strike OPSEC Profiles

By: Jeff Dimmock
Jan 22, 2018 • 7 min read
Read Post
image for Merlin 💖 JavaScript — All up in Your Browsers

Research & Tradecraft

Merlin 💖 JavaScript — All up in Your Browsers

By: Russel Van Tuyl
Jan 18, 2018 • 7 min read
Read Post
image for Introducing Merlin — A cross-platform post-exploitation HTTP/2 Command & Control Tool

Research & Tradecraft

Introducing Merlin — A cross-platform post-exploitation HTTP/2 Command & Control Tool

By: Russel Van Tuyl
Dec 18, 2017 • 8 min read
Read Post
image for Designing Effective Covert Red Team Attack Infrastructure

Research & Tradecraft

Designing Effective Covert Red Team Attack Infrastructure

By: Jeff Dimmock
Dec 4, 2017 • 20 min read
Read Post
image for The PowerView PowerUsage Series #4

Research & Tradecraft

The PowerView PowerUsage Series #4

By: Will Schroeder
Nov 20, 2017 • 4 min read
Read Post
image for Lateral Movement Using Outlook’s CreateObject Method and DotNetToJScript

Research & Tradecraft

Lateral Movement Using Outlook’s CreateObject Method and DotNetToJScript

By: Matt Nelson
Nov 16, 2017 • 4 min read
Read Post
image for A Look at CVE-2017–8715: Bypassing CVE-2017–0218 using PowerShell Module Manifests

Research & Tradecraft

A Look at CVE-2017–8715: Bypassing CVE-2017–0218 using PowerShell Module Manifests

By: Matt Nelson
Nov 6, 2017 • 6 min read
Read Post
image for A Guide to Attacking Domain Trusts

Research & Tradecraft

A Guide to Attacking Domain Trusts

By: Will Schroeder
Oct 30, 2017 • 46 min read
Read Post