blog.aermored.com Configuring the Software for Our Hardware Implant
Software configuration for secure C2
Red Teamers are here to break into your stuff before the bad guys do, and help you secure it. This is a place to discuss novel research, pentest tools and techniques, physical security and post memes about the Blue Team.
Join us! We have cookies. Blue Team's cookies. >:)
Members
440
Posts
14
Active Today
1
Created
2 yr. ago
-
Red Team @infosec.pub dap @lemmy.onlylans.io blog.aermored.com Hardware Implants as an Initial Access VectorHow to gain initial access via a hardware implant.
From a recent engagement. We turned to hardware implants as an initial access vector to enable remote operations.
-
Red Team @infosec.pub dap @lemmy.onlylans.io 
www.bleepingcomputer.com New tool exploits Microsoft Teams bug to send malware to usersA member of U.S. Navy's red team has published a tool called TeamsPhisher that leverages an unresolved security issue in Microsoft Teams to bypass restrictions for incoming files from users outside of a targeted organization, the so-called external tenants.
-
Red Team @infosec.pub nightowl @infosec.pub Has anyone here taken the new OSCP exam?
In the middle of the depths of studying. Would love reviews or thoughts on the new exam! Words of encouragement welcome 🙂
-
Red Team @infosec.pub dap @lemmy.onlylans.io 
www.bleepingcomputer.com Microsoft Teams bug allows malware delivery from external accountsSecurity researchers have found a simple way to deliver malware to an organization with Microsoft Teams, despite restrictions in the application for files from external sources.
-
Red Team @infosec.pub 0xCBE @infosec.pub 
github.com JWT authentication bypass via `X-HTTP-Method-Override` header## Summary ESPv2 contains an authentication bypass vulnerability. API clients can craft a malicious `X-HTTP-Method-Override` header value to bypass JWT authentication in specific cases. ## Ba...
-
Red Team @infosec.pub udunadan @infosec.pub Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access
github.com GitHub - krisnova/boopkit: Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin. - GitHub - krisnova/boopkit: Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, ...
-
Red Team @infosec.pub dap @lemmy.onlylans.io 
www.securesystems.de Active Directory Spotlight: Attacking The Microsoft Configuration Manager (SCCM/MECM)This spotlight covers the Microsoft Configuration Manager (ConfigMgr), also known as SCCM or MECM. Get an intro into the Configuration Manger, an overview and demonstration of known attacks against it, practical tool box knowledge and best practice defensive guidelines.
-
Red Team @infosec.pub alex_02 @infosec.pub Probably already posted and well known, but a nice place for all the native binaries baked into windows that can be used.
-
Red Team @infosec.pub NeonPayload @infosec.pub Tryhackme's red team thoughts
tryhackme.com TryHackMe | Cyber Security TrainingAn online platform for learning and teaching cyber security, all through your browser.
Hey Red team crew, I'd love to hear everyones thoughts on the tryhackme's red team course. a lot of paid parts, but not all. I'd love to know what you think or if they're better courses
-
Red Team @infosec.pub NeonPayload @infosec.pub RedTeam toolkits
github.com GitHub - A-poc/RedTeam-Tools: Tools and Techniques for Red Team / Penetration TestingTools and Techniques for Red Team / Penetration Testing - GitHub - A-poc/RedTeam-Tools: Tools and Techniques for Red Team / Penetration Testing
No one has posted yet, So I'll be the first and drop this easy start github page.
