SensePost | Blog | Post-exploitation

Jumping into SOCKS

Reading time: ~30 min

Posted by Jacques Coertze on 24 January 2023

Categories: Post-exploitation, Research, Tool, Socks

On a recent internal assessment, we ran into a problem. While holding low-privileged access to an internal Windows host, we...

Reading time: ~18 min

Posted by Philippe Vogler on 23 April 2020

Categories: Anti-virus, Malware, Persistence, Post-exploitation, Sysmon, Windows

I’ve been spending some time building new content for our Introduction to Red Teaming course, which has been great for...

Reading time: ~4 min

Posted by sara on 11 February 2016

Categories: Empire, Post-exploitation, Powershell

Is not a hack until you are 3 tunnels deep – Ian de Villiers External assessments. It’s about not only...

Reading time: ~6 min

Posted by Dane Goodwin on 07 December 2015

Categories: Active directory, B-sides, Conferences, Internals, Post-exploitation, Tools, Zacon

Given the prevalence of Microsoft Active Directory domains as the primary means of managing large corporate networks both globally and...

Reading time: ~5 min

Posted by george on 27 May 2013

Categories: Backdoor, Fun, Howto, Infrastructure, Internals, Linux, Local, Post-exploitation, Shells, Silly-yammerings, Tricks

Willems and I are currently on an internal assessment and have popped a couple hundred (thousand?) RHEL machines, which was...

Reading time: ~3 min

Posted by Dominic White on 23 November 2012

Categories: Fun, Post-exploitation, Programming, Shells

For our internal hackathon, we wanted to produce some shirts. We ran a competition to see who could produce a...