Tag: red team
-
Attacking Password Managers: LastPass
This is the second post in a series I have done looking at password managers. My first post was on KeePass and covered some techniques which can be used against local password managers. For this post, LastPass will be used as an example of a cloud-based password manager. In my opinion, these managers often have […]
-
Attacking Password Managers: KeePass
In this two-part blog post, Ill be taking a look into attacks password managers to improve my knowledge on techniques which can be used against them. To start with, I will take a look at local password managers by looking at the sort of techniques which can be used against KeePass. The second post covers […]
-
SharpRDPHijack: RDP Session Hijacking
Overview SharpRDPHijack by Bohops is a tool which has sat in my Twitter likes for far, far too long! In this article I am going to dig into SharpRDPHijack, as well as some alternate tooling which can also be used to perform RDP session hijacking. This technique is covered by MITRE ATT&CK under T1563.002. For […]
-
Certified Red Team Operator (CRTO) Review
Intro Having recently passed the CRTO course by RastaMouse, I felt it was only right to write a little review on it. Typically, the course has changed slightly since I sat it, with the labs now using Elastic Security in place of Splunk. Aside from this I believe the course is practically the same. TL:DR […]