CSharp, DotNetToJScript, XSL

15 May 2018 in blog

In April 2018, Casey Smith published a finding he dubbed squiblytwo, which detailed how WMIC can be used to invoke arbitary code contained in the extensible stylesheet language (XSL) format.

Rasta Mouse

Taylor Swift fan, wannabe Red Teamer & 1337 hax0r (in that order).

Penetration Tester

no post found

RDPClip

Jun 6, 2018

This is just a quick post to demonstrate some interesting aspects of the Remote Desktop Clipboard Monitor.

CSharp, DotNetToJScript, XSL

May 5, 2018

In April 2018, Casey Smith published a finding he dubbed squiblytwo, which detailed how WMIC can be used to invoke arbitary code contained in the extensible stylesheet language (XSL) format.

Review: Active Directory Attacks for Red and Blue Teams

May 5, 2018

Along with Cn33liz, I recently had the pleasure of assisting Nikhil Mittal with his 2018 BruCON spring training: Active Directory Attacks for Red and Blue Teams.

A View of Persistence

Mar 3, 2018

Persistence, noun, the continued or prolonged existence of something.

LAPS - Part 2

Mar 3, 2018

In Part 1 we explored how one could go about discovering and mapping the LAPS configuration in a domain. In this part, we’ll look at various ways LAPS can be abused for persistence purposes.

Red Team Infrastructure - AWS Encrypted EBS

Feb 2, 2018

Tim MalcomVetter caused a bit of stir over his Responsible Red Teams post last week, which is not surprising since he was pretty fucking rude about the whole thing.

VHD to DA

Feb 2, 2018

Where a 10-year old backup can fcuk you in the ass…

Automated Red Team Infrastructure Deployment with Terraform - Part 2

Sep 9, 2017

Introduction

In Part 1, we looked at using Terraform to deploy cloud infrastructure (VMs, firewalls, DNS records etc). In this post, we’ll look at some examples for automating the installation of tools/software on the VM resources.

Jumping Network Segregation with RDP

Aug 8, 2017

Introduction

This short post demonstrates how it may be possible to pivot into a segregated/protected network, via an RDP Jump Box.

16 posts found

CSharp, DotNetToJScript, XSL

Rasta Mouse

RDPClip

CSharp, DotNetToJScript, XSL

Review: Active Directory Attacks for Red and Blue Teams

A View of Persistence

LAPS - Part 2

LAPS - Part 1

Red Team Infrastructure - AWS Encrypted EBS

VHD to DA

Automated Red Team Infrastructure Deployment with Terraform - Part 2

Introduction

Jumping Network Segregation with RDP

Introduction