All Services
Contact Us
- Contact Us
- Email Sign-Up
About Us
Free Resources
Training
- BHIS & Antisyphon Training
- WWHF Conference
Community
- Discord
- LinkedIn
- YouTube
- Bluesky
- Twitter/X
- Upcoming Events
Fun Stuff

Red Team

Author, Joff Thyer, Password Spray, Red Team Joff Thyer, password spraying, RPCCLINET

Password Spraying & Other Fun with RPCCLIENT

Joff Thyer // Many of us in the penetration testing community are used to scenarios whereby we land a targeted phishing campaign within a Windows enterprise environment and have […]

Read the entire post here

Author, External/Internal, Joff Thyer, Red Team AV, AV evasion, modifying measpoilt, shellcode

Modifying Metasploit x64 template for AV evasion

Joff Thyer // When performing a penetration of test of organizations with Windows desktops, many testers will now resort to using tools like Veil’s Powershell Empire in order to […]

Read the entire post here

Red Team, Web App Info2Ouch, Nessus, Vulnerabilities

Service Detection – Tomcat Manager, From “Info” to “Ouch”

Carrie Roberts // Continuing on the thread of highlighting Nessus vulnerability scan results that turned out to be more severe than reported . . . I always review the “Info” level “Service Detection” […]

Read the entire post here

External/Internal, Password Spray, Red Team Info2Ouch, Nessus, Vulnerabilities

Asterisk SIP Server, From “Info” to “Ouch”

Carrie Roberts // I learned some new stuff that will make me pay attention to “Asterisk Detection” Nessus informational findings in the future . . . On an external network […]

Read the entire post here