After a masterclass from cemaxecuter ZMQ works! Turn on a WarDragon, launch the app, that’s it. Lots more to come…

iDRAC to Domain Admin infosecwriteups.com/idrac-to-domai…

Trailer looks cool. Holy fuck, if you went to SERE the boots song will give you legit flash backs. Not sure if the trailer is that good, or if there is some deep memory of hopelessness attached to that song that just make it that worse for me.

New #AADInternals version is finally out now: ▪ Moved endpoint related stuff to new module: AADInternals-Endpoints ▪ Added blue team stuff: Get app consent info, find backdoors, convert SID<>Entra ID Object ID, find abusable dynamic groups ▪ Added red team stuff: Get ESTSAUTH

Want to run roadrecon, but a device compliance policy is getting in your way? You can use the Intune Company Portal client ID, which is a hardcoded and undocumented exclusion in CA for device compliance. It has user_impersonation rights on the AAD Graph 😃

pytune - a post-exploitation tool for enrolling a fake device into Intune with multiple platform support github.com/secureworks/py…

🎄Christmas Giveaway Time🎄 We are going to give this M81 MRC chest pack away to a random fren. Super simple to have your name in the hat. Like this post, follow us if you haven't already, share this post. Each action counts as an entry. Current followers are already in.

A BloodHound collector for Microsoft Configuration Manager github.com/CrowdStrike/sc… #redteam

Sorry folks, I had to remove the Disconnected GPO project from GitHub... but never fear, it has returned as Disconnected RSAT since it now supports the Certificate Authority and Certificate Templates snap-ins in addition to Group Policy support. github.com/CCob/DRSAT

New "tool" to make life easier when doing post ex in Azure environments: github.com/LuemmelSec/Pen…

I wanted to quickly account for the DJI firmware for AntSDR for an optional use case that could feed DragonSync and Lμke Swi☨zer mobile app - here’s Luke’s Mac mod and my DJI mod. Seems to work without jacking anything up Bjoern Kerler 🤞 github.com/alphafox02/Dro…

Azure Post Exploitation Framework github.com/LuemmelSec/APEX

Recently came across a pretty neat technique to silently load (malicious) VS Code extensions using its bootstrapping and portability features. Thought it was interesting enough to warrant my first blog post in 4 years 🙃 Check it out 👇 casvancooten.com/posts/2025/02/…

You have got a valid NTLM relay but SMB and LDAP are signed, LDAPS has got Channel Binding and ESC8 is not available... What about WinRMS ? :D Blogpost: sensepost.com/blog/2025/is-t… Tool: github.com/fortra/impacke… And also, big thanks to jmk (Joe Mondloch) for the collab' :D!

I'm just gonna slide this little teaser shot in for today's Black Hills Information Security webcast I'm giving.... And you thought self-signed ClickOnce payloads were dead..

In-case you missed the webcast, here's the GitHub link github.com/rvrsh3ll/Bolth…. Blog post coming soon! One of my fav bits we talked about was using this to have your C2 call to 127.0.0.1:port or even adding dev tunnels to the ClickOnce. Many options. Modify to taste 🧑‍🍳

Microsoft Copilot for SharePoint just made recon a whole lot easier. 🚨   One of our Red Teamers came across a massive SharePoint, too much to explore manually. So, with some careful prompting, they asked Copilot to do the heavy lifting...   It opened the door to credentials,

Automated deployment of red team infrastructure through GitHub Actions workflows. It supports configurable C2 frameworks and phishing operations with a focus on secure, repeatable deployments. github.com/CultCornholio/…

🚨You have a true positive alert on a Windows/Linux endpoint—this is not a drill! Learn how to investigate & respond fast in Rapid Endpoint Investigations w/ Patterson Cake. Live demos + hands-on labs. 📅 Friday, June 6 💸 Pay-What-You-Can Register Now: antisyphontraining.com/course/worksho…

Pentesters: What's the coolest thing you've done with Burp Suite? 💥🖋️ New to the industry? You'll want to make sure you're comfortable with it and BB King has got you covered! THIS Friday, June 13th: antisyphontraining.com/course/worksho…