Ramblings
Cloudflare Tunneling
Playing around with Cloudflare's tunnelling capabilites as well as checking out how it could be used for C2 infrastructure
Check it out
Offensive Nim
Here is some detailed information on my time spent building shellcode runners in the Nim programming language.
Check it out
Sliver Beacon Object File
Adding a new Sliver BOF into the Sliver Armory and my experiences working with the Sliver C2 Framework
Check it out
RBCD on a Local Machine via Socks Proxy
A nice little LPE trick to easily get RBCD access on a compromised machine running webdav.
Check it out
Cobalt Strike Aggressor Script
A simple Cobalt Strike aggressor script I developed to email me when a beacon checks in.
Check it out
Azure Scoping Overview
I recently had to figure out what type of creds and infrastructure I required for an Azure Pentest. Here are my thoughts on Azure scoping.
Check it out
Becoming a CrackMapExec Developer
Some thoughts on my little foray into the world of CrackMapExec Python development.
Check it out
Certified Red Team Operator (CRTO) Review
I passed this excellent course in April 2023. If you like the idea of using Cobalt Strike have a read.
Check it out
Abusing ADCS ESC8
Here is the story of my first internal pentest where I got DA abusing ESC8.
Check it out
Sektor7 Malware Development Essentials Review
My review of the Sektor7 Malware Development Essentials Course.
Check it out
Certified Red Team Professional (CRTP) Review
My review of the CRTP labs and exam. I took this exam in November 2022 and it was a fantastic experience using only Windows to attack Windows
Check it out
Offensive Security Certified Professional (OSCP) Review
My review of the OSCP labs and exam. I took this exam in late September 2022.
Check it out