notes

2 - AD Privesc

LAPS, gMSA and Constrained Deleg

28 Dec 2023

3 minute read

notes

1 - Lateral Movement

Almost the same content as CRTP + Extracting Credentials from LSASS

27 Dec 2023

less than 1 minute read

review

CRTE Review

Get to know the Certified Read Team Expert certification by Altered Security

26 Dec 2023

less than 1 minute read

notes

7 - AD Defense

We Hac, We Attac but most importantly We Protec!

20 Dec 2023

10 minute read

notes

6 - AD Privesc

Kerberos attacks, Delegations, Across Trusts escalation, ADCS and More

19 Dec 2023

18 minute read

notes

5 - AD Persistence

Golden, Silver, Diamond Tickets, Custom SSP, ACLs abuses and More

18 Dec 2023

10 minute read

notes

4 - Offensive .NET

Use Minimal obfuscation and String manipulation to bypass Win Defender

17 Dec 2023

3 minute read

notes

3 - Lateral Movement

PowerShell Remoting, Mimikatz, Over Pass the hash and More

16 Dec 2023

3 minute read

notes

2 - Win Privesc

Unquoted Paths and Modifiable Services

15 Dec 2023

1 minute read

notes

1 - AD Enumeration

Learn how to enumerate the Domain, ACLs, GPOs, Trusts and More

14 Dec 2023

9 minute read

review

CRTP Review

Certified Red Team Professional

13 Dec 2023

less than 1 minute read

notes

4 - Windows Lateral Movement

Intro to Windows Lateral Movement

12 Dec 2023

3 minute read

notes

3 - Windows Privesc

Intro to Windows Privesc

12 Dec 2023

1 minute read

notes

2 - Bloodhound

BloodHound is a versatile and powerful tool for AD enumeration and analysis.

11 Dec 2023

3 minute read

notes

1 - Powershell

Starting with Powershell for AD Exploitation!

08 Dec 2023

4 minute read

Johnermac

Recent posts

2 - AD Privesc

1 - Lateral Movement

CRTE Review

7 - AD Defense

6 - AD Privesc

5 - AD Persistence

4 - Offensive .NET

3 - Lateral Movement

2 - Win Privesc

1 - AD Enumeration

CRTP Review

4 - Windows Lateral Movement

3 - Windows Privesc

2 - Bloodhound

1 - Powershell