In this first in a new series, Raxis’ Andrew Trexler explains what SQL Injection (SQLi)[…]
Learn to exploit msDS-AllowedToActOnBehalfOfOtherIdentitity to gain administrative access in a Resource Based Constrained Delegation (RBCD)
Raxis lead penetration tester Andrew Trexler comes back to Active Directory Certificate Services (ADCS) exploits,[…]
Raxis lead penetration tester Andrew Trexler walks us through several attacks on misconfigured Active Directory[…]
Raxis lead penetration tester Andrew Trexler walks us through several broadcast attacks using NTLMRelayx, MiTM6,[…]
This post will show you how to setup a simple Active Directory (AD) test environment.[…]
Andrew Trexler, Raxis senior penetration tester demonstrates how to exploit the “Dirty Pipe” vulnerability (CVE-2022-0847).
What’s it like to earn your OSCP? Raxis senior penetration tester Andrew Trexler talks about[…]
Senior penetration tester Andrew Trexler has a penchant for breaking in and blowing up. Read[…]