Red Team

Informational, InfoSec 101, Red Team career advice, getting started, Pentesting, Red Team

Getting Started In Pentesting – Advice From The BHIS Pentest Lead

Advice about getting started in pentesting from the BHIS pentest lead, including a learning path and why you should go all in on offensive security skills.

Read the entire post here

00466_06052020_WebcastBlueTeamPerspective

Author, Blue Team, Blue Team Tools, How-To, Hunt Teaming, Informational, InfoSec 101, Jordan Drysdale, Kent Ickler, Red Team, Red Team Tools, Webcasts Blue Team, Jordan Drysdale, Kent Ickler, Red Team, Red Team vs. Blue Team

Webcast: A Blue Team’s Perspective on Red Team Hack Tools

Kent and Jordan are back to continue their journey to make the world a better place. This time around, they will be reviewing a series of tools commonly used on […]

Podcast: Play in new window | Download

Subscribe: Apple Podcasts | Spotify | Amazon Music | RSS

Read the entire post here

How-To, Informational, Red Team BYOI, Marcello Salvati, Red Team

Red Teamer’s Cookbook: BYOI (Bring Your Own Interpreter)

Marcello Salvati // This fairly lengthy blog post aims at providing Red Team Operators ideas on how to incorporate BYOI tradecraft into their own custom tooling and get those creative […]

Read the entire post here

How-To, Red Team, Webcasts, Wireless Exfil, Hardware, Paul Clark, Red Team, Software Defined Radio, Wireless

Webcast: Building a Small and Flexible Wireless Exfiltration Box with SDR

Paul Clark// Do you want to know how we learned Software Defined Radio? We learned it from Paul. We also learned by getting our hands dirty with projects. For this […]

Read the entire post here

Author, How-To, Informational, Michael Allen, Red Team How to, Michael Allen, Payload, Red Team, Rubber Ducky, Scan Codes, Teensy, Weaponize, yubikey

How to Weaponize the Yubikey

Michael Allen // A couple of years ago, I had a YubiKey that was affected by a security vulnerability, and to fix the issue, Yubico sent me a brand new […]

Read the entire post here

Author, External/Internal, How-To, Informational, Jordan Drysdale, LLMNR, Red Team exploit, How to, Jordan Drysdale, LLMNR, Red Team, SMB Message Signing

An SMB Relay Race – How To Exploit LLMNR and SMB Message Signing for Fun and Profit

Jordan Drysdale// This is basically a slight update and rip off of Marcello’s work out here: https://byt3bl33d3r.github.io/practical-guide-to-ntlm-relaying-in-2017-aka-getting-a-foothold-in-under-5-minutes.html /tl;dr – Zero to DA on an environment through an exposed Outlook Web […]

Read the entire post here

Author, Blue Team, General InfoSec Tips & Tricks, How-To, Informational, InfoSec 101, Mike Felch Blue Team, cloud, Google, Red Team

How to Purge Google and Start Over – Part 2

Mike Felch// How to Purge Google and Start Over – Part 1 Brief Recap In part 1, we discussed a red team engagement that went south when the Google SOC […]

Read the entire post here

Author, Blue Team, General InfoSec Tips & Tricks, How-To, Informational, Mike Felch Blue Team, cloud, Google, Mike Felch, privacy, Red Team

How to Purge Google and Start Over – Part 1

Mike Felch// A Tale of Blue Destroying Red Let me start by sharing a story about a fairly recent red team engagement against a highly-secured technical customer that didn’t end […]

Read the entire post here

00375_03062019_PODCAST_EndpointSecurityGotYouDown

C2, Informational, Podcasts, Red Team, Red Team Tools .Net, BYOI, C#, EDR, IronPython, Marcello Salvati, PowerShell, Red Team, SILENTTRINITY, Tradecraft, Windows Defender

BHIS PODCAST: Endpoint Security Got You Down? No PowerShell? No Problem.

Do your PowerShell scripts keep getting caught? Tired of dealing with EDRs & Windows Defender every time you need to pop a box? In this one-hour podcast, originally recorded as […]

Podcast: Play in new window | Download

Subscribe: Apple Podcasts | Spotify | Amazon Music | RSS

Read the entire post here

1 2 3 4