Reading time:
~21 min
Posted
by jeanpascal.thomas@orangecyberdefense.com
on
28 July 2023
For our annual internal hacker conference dubbed SenseCon in 2023, I decided to take a look at communication between a...
Reading time:
~10 min
Posted
by aurelien.chalot@orangecyberdefense.com
on
31 March 2023
On the 31st of October 2022, a PR on CrackMapExec from Thomas Seigneuret (@Zblurx) was merged. This PR fixed Kerberos...
Reading time:
~14 min
Posted
by Hocine Mahtout
on
04 November 2022
The goal of this blog post is to present a privilege escalation I found while working on ADCS. We will...
Reading time:
~34 min
Posted
by aurelien.chalot@orangecyberdefense.com
on
27 October 2022
During an internal assessment, I performed an NTLM relay and ended up owning the NT AUTHORITY\SYSTEM account of the Windows...
Reading time:
~9 min
Posted
by Michael Kruger
on
30 September 2022
I built some infrastructure that you could deploy and use to easily tunnel from arbitrary sources over a proxy such...
Reading time:
~18 min
Posted
by Michael Higgo
on
16 November 2021
With the release of windows 11, Microsoft announced the Windows Subsystem for Android or WSA. This following their previous release,...
Reading time:
~28 min
Posted
by aurelien.chalot@orangecyberdefense.com
on
03 August 2021
Using the Windows Remote Procedure Call (RPC) interface is an interesting concept when conssidering the fact that it allows you...
Reading time:
~18 min
Posted
by Philippe Vogler
on
23 April 2020
I’ve been spending some time building new content for our Introduction to Red Teaming course, which has been great for...
Reading time:
~10 min
Posted
by Hector Cuesta
on
26 March 2020
Introduction Recently, I encountered a fully password-less environment. Every employee in this company had their own smart card that they...
Reading time:
~16 min
Posted
by Hector Cuesta
on
02 May 2019
Categories:
Cve,
Cve-2019-0547,
Cve-2019-0726,
Dhcp,
Exploit,
Kb4480966,
Patch diffing,
Research,
Diffing,
Protocol,
Windows
This post will cover my journey into the analysis of CVE-2019-0547 (Affecting the windows DHCP client), a vulnerability discovered by...
Reading time:
~21 min
Posted
by Leon Jacobs
on
23 April 2019
tl;dr I have been actively using Frida for little over a year now, but primarily on mobile devices while building...
Reading time:
~21 min
Posted
by saif
on
29 July 2017
Exploiting MS17-017 EoP Using Color Palettes This post is an accompaniment to the Defcon 25 talk given by Saif. One...
Reading time:
~6 min
Posted
by symeon
on
18 November 2016
This is my password,” said the King as he drew his sword. “The light is dawning, the lie broken. Now...