Red Team Tools

Phishing, Red Team, Red Team Tools macros, MS Excel, MS Office, MS Word, Risky Business

How to Get Malicious Macros Past Email Filters

Carrie Roberts //       A malicious macro in a Microsoft Word or Excel document is an effective hacking technique. These documents could be delivered in a variety of […]

Read the entire post here

Author, External/Internal, Red Team, Red Team Tools, Sally Vandeven AD Explorer, DA, domain admin, Pentesting, Shodan

Domain Goodness – How I Learned to LOVE AD Explorer

Sally Vandeven // OR How to Pentest with AD Explorer! Mark Russinovich’s Sysinternals tools (Microsoft) are nothing new. They have been a favorite among system administrators for many, many years. […]

Read the entire post here

Author, Joff Thyer, Red Team, Red Team Tools, Webcasts Blue Team, how to analyze log frequency with python, log analysis, Log File Frequency Analysis, Python, Red Team

WEBCAST: Log File Frequency Analysis with Python

Joff Thyer // Information Security professionals often have reason to analyze logs. Whether Red Team or Blue Team, there are countless times that you find yourself using “grep”, “tail”, “cut”, […]

Read the entire post here

Author, External/Internal, Joff Thyer, Red Team, Red Team Tools Casey Smith, COM+ scriplets, DLL, subtee, Wevade, whitelisting

How to Evade Application Whitelisting Using REGSVR32

Joff Thyer // I was recently working on a Red Team for a customer that was very much up to date with their defenses. This customer had tight egress controls, […]

Read the entire post here

External/Internal, Red Team, Red Team Tools Gold Paper, Internal Pen Test, Pivot, Vulnerabilities, XML External Entity, XXE

XML External Entity – Beyond /etc/passwd (For Fun & Profit)

Robert Schwass*//   Last week I was asked twice in one day if I knew what XML External Entity (XXE) Vulnerabilities were. Maybe they are making a comeback in mainstream security […]

Read the entire post here

External/Internal, Red Team, Red Team Tools EyeWitness, good to know, handy dandy, penetration testing, Pentesting, screenshots, tool

Web Server Screenshots with a Single Command

Carrie Roberts // EyeWitness is a handy tool developed by Chris Truncer for grabbing web browser screenshots from a list of URLs. Especially handy for pen-testers is its ability to create […]

Read the entire post here

Author, Brian Fehrman, Red Team, Red Team Tools Bypassing Web-Proxy Filtering, C2 Channels, penetration testing, Pentesting, PowerShell, Web-Proxy Filtering

How to Bypass Web-Proxy Filtering

Brian Fehrman // Someone recently posed a question to BHIS about creating C2 channels in environments where heavily restrictive egress filtering is being utilized. Testers at BHIS, and in the […]

Read the entire post here

Author, Jordan Drysdale, Kent Ickler, Red Team, Red Team Tools Kon-Boot, thumb drive fun

Super Sweet Kon-Boot Demo in GIFs

Jordan Drysdale, victim // Kent Ickler, adversary // In this post, our victim locks their computer and heads out for a coffee refill. The adversary smashes through all system and […]

Read the entire post here

Author, Beau Bullock, Recon, Red Team, Red Team Tools HostRecon, PowerShell, Situational Awareness, tool

HostRecon: A Situational Awareness Tool

Beau Bullock // Overview HostRecon is a tool I wrote in PowerShell to assist with quickly enumerating a number of items that I would typically check after gaining access to […]

Read the entire post here