When many people around were fighting the good fight for Net Neutrality, talented people over Dell SecureWorks Counter Threat Unit or CTU discovered a malware
In the previous article, we had explained Forge Kerberos Ticket “Domain Persistence: Golden Ticket Attack” where have discussed how the Kerberos authentication process works and
In this article, we will learn to hijack an RDP session using various methods. This is a part of Lateral movement which is a technique
NTDS.dit represents the crown jewel of Active Directory environments, containing the complete database of domain objects, user accounts, and critically, all password hashes for every
In this article, we will dump the windows login credentials by exploiting SSP. This is our fourth article in the series of credential dumping. Both
People might be aware of “Group Policy Preferences” in Windows Server 2008 that allows system administrators to set up specific configurations. It can be used
PoshC2 is an open-source remote administration and post-exploitation framework that is publicly available on GitHub. The server-side components of the tool are primarily written in
In this article, we will be exploring a total of 6 tools that can craft, encrypt and exploit a Windows Machine using malicious Macros. Table
Spoof SSDP replies and create fake UPnP devices to phish for credentials and NetNTLM challenge/response. Table of Content Introduction What is SSDP? What are UPnP