strandjs - [email protected]
@strandjs
I will light the way by the bridges I burn.
Retired Senior SANS Instructor
IANS Faculty
Black Hills Information Security
Active Countermeasures
ID:15727079
http://www.blackhillsinfosec.com 04-08-2008 20:07:47
13,9K Tweets
45,2K Followers
2,4K Following
Follow People
Building a new web app? Check out our blog series on the top 5 security considerations to keep your app safe from cyber threats.
Read more: hubs.la/Q02tY8T80
#webapp #ProfessionallyEvil #SecureIdeas #blogseries
Dropping a new initial access technique via RDP that I dubbed 'Rogue RDP'. Use malicious .RDP files to bypass email/servers/security gateways and then run code to binary plant/exfil from your own RDP server, blinding EDR. Bonus: Target runs HyperV? RCE! blackhillsinfosec.com/rogue-rdp-revi…
Check out Beau Bullock and Steve Borosh 's talk, 'GraphRunner: A Post-Exploitation Toolset for M365,' from WWHF - Deadwood 2023!
Grab your tickets for WWHF - Deadwood 2024! --> wildwesthackinfest.com/conference/reg…
youtube.com/watch?v=IDZzqg…
Rogue RDP – Revisiting Initial Access Methods, by Mike Felch (Stay Ready)
blackhillsinfosec.com/rogue-rdp-revi…