During DerbyCon 2018 this past October, my teammates @tifkin_, @enigma0x3 and @harmj0y gave an awesome presentation titled “The Unintended…

…memory.

Cleaned up the output of the remote python script command.

Feel free to follow me on Twitter at @_markmo_ (yes with the underscores)

For a while now, I have been saying that PowerShell is dead in high security environments. Yes, it still works in environments where they…

Some of the approved projects include KeePass, 7-zip, VLC Media Player, Drupal, and FileZilla.

Write ups of solution for CTF challenges I solved. Contribute to yannayl/ctf-writeups development by creating an account on GitHub.

Contribute to beahunt3r/Windows-Hunting development by creating an account on GitHub.

A list of files / paths to probe when arbitrary files can be read on a Microsoft Windows operating system - soffensive/windowsblindread

Inside "Hacker Factory" of training center dubbed "Eureka" or "Эврика" engaged in training future hackers among the employees of special services of Russia. Trained by employees of GRU military unit No. 26165 #GRU #Russia #APT28

LAPS Overview: LAPS (Local Administrator Password Solution) is a tool for managing local administrator passwords for domain joined computers. It stores passwords/secrets in a confidential attribute…

The Cobalt Strike Blog. Read new featured content, get updates on the latest patches, and insights into the future of red teaming tools.

SMB Relay has been around for a long while. I even have a post about using it along with LNK files here:
MS08-068 + MS10-046 = Fun until 2018
Here is the problem though. Most of the tools to exploit it either catch the authentication in NTLMv2/NTLMv1 (which…

Slides from my Track X Thotcon 2018 Workshop entitled:

"Fun with LDAP, Kerberos (and MSRPC) in AD Environments"

If you want the embedded Gifs/Vide…