Red Teaming Ramblings of an aspiring
Red Teamer

Whoami Ramblings

Whoami

Formerly worked in a non security based IT role for 15 years where I then undertook a career change into Cyber Security.

Currently working in Adversary Simulation hacking Cloud, Physical, WiFi and Network Infrastructure systems. Busily studying all things Red Teaming in my spare time.

This Blog will highlight what I learn whilst working in Adversary Simulation.

Ramblings

cf

Presenting at BSides London 2024

Presenting my talk named "Bring Your Own Tusted Binary" on the main stage at BSides London 2024

Check it out
cf

NTLM Relaying: Making the old new again

Highlighting some of the older NTLM relaying based techniques which are still very effective in real world engagements.

Check it out
cf

Putting The C2 In C2loudflare

How to bring up an entire C2 infrastructure with all of your tooling and their corresponding redirectors within 5 minutes.

Check it out
cf

Cloudflare Tunneling

Playing around with Cloudflare's tunnelling capabilites as well as checking out how it could be used for C2 infrastructure.

Check it out
nim

Offensive Nim

Here is some detailed information on my time spent building shellcode runners in the Nim programming language.

Check it out
cme

Sliver Beacon Object File

Adding a new Sliver BOF into the Sliver Armory and my experiences working with the Sliver C2 Framework.

Check it out
ntlmrelayxproxy

RBCD on a Local Machine via Socks Proxy

A nice little LPE trick to easily get RBCD access on a compromised machine running webdav.

Check it out
cme

Cobalt Strike Aggressor Script

A simple Cobalt Strike aggressor script I developed to email me when a beacon checks in.

Check it out
azurescoping

Azure Scoping Overview

I recently had to figure out what type of creds and infrastructure I required for an Azure Pentest. Here are my thoughts on Azure scoping.

Check it out
cme

Becoming a CrackMapExec Developer

Some thoughts on my little foray into the world of CrackMapExec Python development.

Check it out
crto

Certified Red Team Operator (CRTO) Review

I passed this excellent course in April 2023. If you like the idea of using Cobalt Strike have a read.

Check it out
adcs

Abusing ADCS ESC8

Here is the story of my first internal pentest where I got DA abusing ESC8.

Check it out
sektor7-ess

Sektor7 Malware Development Essentials Review

My review of the Sektor7 Malware Development Essentials Course.

Check it out
crtp

Certified Red Team Professional (CRTP) Review

My review of the CRTP labs and exam. I took this exam in November 2022 and it was a fantastic experience using only Windows to attack Windows

Check it out
oscp

Offensive Security Certified Professional (OSCP) Review

My review of the OSCP labs and exam. I took this exam in late September 2022.

Check it out