Security Engineering

Kali OpenVPN Killswitch

Ensuring all network traffic is routed over an OpenVPN connection.

Infrastructure

Pentest One Liners

A list of one line commands for Windows to download and execute payloads.

Infrastructure

Credential Interception Using Malicious SMB Shares

How to intercept NTLM-SSP hashed credentials for offline cracking.

Infrastructure

Casino Royale CTF

A walkthrough for VulnHub’s Casino Royale CTF.

Security Engineering

Software Restriction Policies

Configuring Software Restriction Policies (SRP) in Windows 10.

Infrastructure

GoldenEye CTF

A writeup of the VulnHub GoldenEye capture the flag (CTF) challenge.

Infrastructure

Extracting Windows Credentials Using Native Tools

How to extract credentials from Windows systems using built in commands.

Infrastructure

Kerberoasting

Kerbroasting to extract service account credentials.

Infrastructure

Lateral Movement With Named Pipes

A demonstraton of named pipe communication using Meterpreter.

Infrastructure

Session Enumeration With NetSessionEnum API

How to take advantage of the NetSessionEnum API to determine remotely logged in users.

Infrastructure

BloodHound

Using BloodHound to exploit Active Directory based networks.

Security Engineering

Active Directory Honey Tokens

Configuring Active Directory honey tokens to detect account enumeration.