Going Phishing with Terraform

Terraform is a tool for building, changing, and versioning cloud or local infrastructure safely and efficiently. Using Terraform Red Teams can quickly spin up offensive resources.…

Using SMBClient to Enumerate Shares

This blog post seeks to demonstrate the vulnerabilities of SMB NULL sessions, and how to test them with smbclient.…

Bow Before the All Powerful CrackMapExec!!

CrackMapExec more commonly referenced as CME is a post-exploitation tool that helps automate assessing the security of Active Directory networks.…

SPN Scanning - Stealthy Port Scanning

Use SPN Scanning to avoid detection and find where in a Kerberos network services live.…

PowerShell ExecutionPolicy Bypass

By default PowerShell is configured to prevent the execution of PowerShell scripts on Windows systems.…