Winning the race on DACL abuse and LAPS through a HTB Timelapse walkthrough

During the peak of primary election season, most active voters are more concerned with the candidates and their stances on key divisive...

Email spoofing testing and how-to for when DMARC policies are improperly configured

Enumeration First we run a generic nmap scan against the box to see what ports and services are available: We see that SMB is open, let's...

Enumeration First we run an nmap scan against the target: Here we can see that port 445 (SMB) is open. We also see the computer name as...

Overview Vulnerability in a Nutshell PoC Demo/Walkthrough Troubleshooting and Reliability Alternate Attack Paths for KeePass Overview...

Enumeration Upon enumerating with nmap we discover that ports 22 and 80 are open. When we navigate to the IP address via the browser, we...

Enumeration To start working on this box, we'll first run an nmap scan against it to see what ports are open and what services are...

If you're new to the infosec/offsec space, the name "Mimikatz" may be foreign or quite vaguely familiar; however, for the folks that have...

Walkthrough for Micro-CMS v1 challenge on the HackerOne Hacker101 CTF

If you've been in the information security or network administration community for some period of time, chances are you've heard of...

A common technique to leverage once a user's credentials have been harvested is passing the hash; how does that differ from "overpassing...

You may have heard about an AMSI bypass in the context of a work conversation, but what exactly is it and how does it work? Read on to...

Are you considering taking Pentester Academy's Attacking and Defending Active Directory course? Read on and find out more about it and...

If you're in the realm of cybersecurity, you're probably already aware of the fact that most if not all processes and architectures are...