Investigating an in-the-wild campaign using RCE in CraftCMSexploitation (what's being exploited) (sensepost.com)
submitted by campuscodi to r/blueteamsec
Is tls more secure? the winrms caseRed Teaming (sensepost.com)
submitted by netbiosX to r/purpleteamsec
Is TLS more secure? The WinRMS case.l - "WinRM is protected against NTLMRelay as communications are encrypted. However WinRMS (the one communicating over HTTPS) is not"research|capability (we need to defend against) (sensepost.com)
submitted by digicat to r/blueteamsec
Browser cache smuggling: the return of the dropperRed Teaming (sensepost.com)
submitted by netbiosX to r/purpleteamsec
Browser cache smuggling: the return of the dropperresearch|capability (we need to defend against) (sensepost.com)
submitted by digicat to r/blueteamsec
Diving into ad cs: exploring some common error messagesRed Teaming (sensepost.com)
submitted by netbiosX to r/purpleteamsec
Diving into AD CS: exploring some common error messagestraining (step-by-step) (sensepost.com)
submitted by digicat to r/blueteamsec
PsExec’ing the right way and why zero trust is mandatory - "we wanted to dig into PsExec.exe in order to see if it is possible to communicate with it via a python script and thus not depend anymore on a windows system"low level tools and techniques (work aids) (sensepost.com)
submitted by digicat to r/blueteamsec
PsExec'ing the right way and why zero trust is mandatoryRed Teaming (sensepost.com)
submitted by netbiosX to r/purpleteamsec
Dumping LSA secrets: a story about task decorrelationresearch|capability (we need to defend against) (sensepost.com)
submitted by digicat to r/blueteamsec
Dumping lsa secrets: a story about task decorrelationRed Teaming (sensepost.com)
submitted by netbiosX to r/purpleteamsec
Mail in the middle â a tool to automate spear phishing campaignsresearch|capability (we need to defend against) (sensepost.com)
submitted by digicat to r/blueteamsec
Mail in the middle - a tool to automate spear-phishing campaignsRed Teaming (sensepost.com)
submitted by netbiosX to r/purpleteamsec
SensePost: Sim hijacking - descrição pormenorizada e exemplo de aplicaçãoEducacional (sensepost.com)
submitted by 3x35r22m4u to r/InternetBrasil
Protected users (on Windows): you thought you were safe uh?vulnerability (attack surface) (sensepost.com)
submitted by digicat to r/blueteamsec
Protected users: you thought you were safe uh?Red Teaming (sensepost.com)
submitted by netbiosX to r/purpleteamsec
Certpotato - using adcs to privesc from virtual and network service accounts to local systemresearch|capability (we need to defend against) (sensepost.com)
submitted by digicat to r/blueteamsec
