Category: Red Team
-
Attacking Password Managers: LastPass
This is the second post in a series I have done looking at password managers. My first post was on KeePass and covered some techniques which can be used against local password managers. For this post, LastPass will be used as an example of a cloud-based password manager. In my opinion, these managers often have […]
-
Attacking Password Managers: KeePass
In this two-part blog post, Ill be taking a look into attacks password managers to improve my knowledge on techniques which can be used against them. To start with, I will take a look at local password managers by looking at the sort of techniques which can be used against KeePass. The second post covers […]
-
RedTeamNotes: Combining Notes & Graphs!
Intro RedTeamNotes started as a mini project to try and make a better note taking application than what was currently available. The big issue for me with apps such as Obsidian or OneNote was that whilst they have great note taking capability, they struggle to show how different notes relate to each other – unless […]
-
SharpRDPHijack: RDP Session Hijacking
Overview SharpRDPHijack by Bohops is a tool which has sat in my Twitter likes for far, far too long! In this article I am going to dig into SharpRDPHijack, as well as some alternate tooling which can also be used to perform RDP session hijacking. This technique is covered by MITRE ATT&CK under T1563.002. For […]
-
Digging Into Mimikatz’s lsadump And sekurlsa
Overview Initially, my aim with this post was to dig into Mimikatz in greater detail. I had used its more common functions during CRTO and OSCP, but had never explored its more exotic features in any depth. Mimikatz is an enormous tool, so I focused on the lsadump and sekurlsa functions, as they are commonly […]
-
OffSecOps: Using Jenkins For Red Team Tooling
Origin The inspiration for this post came from the excellent talk by Harmj0y at SO-CON 2020. I have been meaning to dig into using Jenkins to automate the building of red team tooling for some while now, but having recently completed the RTO exam, I felt it was time to have a play! The Gist […]