Practical Browser Post-Exploitation Using SSLKEYLOGFILE
Using the built-in session secret logging functionality of TLS libraries to steal cookies from browsers.
Recent Posts
Using Windows VPNs For Low Privilege Network Control
Windows allows any user to setup a VPN connection, can we use this functionality for offensive purposes?
Windows Search And WebDAV Payloads
An exploration of the .search-ms file format and search protocol handlers in combination with WebDAV payloads.
Exploring Users With Multiple Accounts In BloodHound
A methodology and Python script for exploring Active Directory users with multiple accounts in BloodHound.
Identifying Gophish Servers
A methodology for discovering and identifying Gophish deployments in the wild. How easy is your Gophish installation to spot?