Cool Tools Series: MSFvenom
Cool Tools Series: MSFvenom

Raxis’ Nathan Anderson introduces MSFvenom, a part of the Metasploit framework that generates & encodes[…]

Cool Tools Series: Nuclei
Cool Tools Series: Nuclei

Raxis’ Andrew Trexler shows how useful Nuclei is for network and application penetration tests, discovering[…]

Password Length: More than Just a Question of Compliance
Password Length: More than Just a Question of Compliance

Password length requirements are a key part of password security, but, with PCI, NIST, OWASP,[…]

SQL Injection Attack
SQLi Series: SQL Timing Attacks

Andrew Trexler is back with his SQLi Series, this time demonstrating SQL Timing Attacks using[…]

SQL Injection
SQLi Series: An Introduction to SQL Injection

In this first in a new series, Raxis’ Andrew Trexler explains what SQL Injection (SQLi)[…]

AD Series: Resource Based Constrained Delegation (RBCD) Exploits
AD Series: Resource Based Constrained Delegation (RBCD)

Learn to exploit msDS-AllowedToActOnBehalfOfOtherIdentitity to gain administrative access in a Resource Based Constrained Delegation (RBCD)

Raxis Red Team
An Inside Look at a Raxis Red Team

The Raxis Red Team Test is our top tier test that gives a true feel[…]

AD Series: Active Directory Certificate Services (ADCS) Exploits Using NTLMRelayx.py
AD Series: Active Directory Certificate Services (ADCS) Exploits Using NTLMRelayx.py

Raxis’ Andrew Trexler ran into some issues with certipy when testing on port 443 and[…]

Active Directory Certificate Services (ADCS) Misconfiguration Exploits
AD Series: Active Directory Certificate Services (ADCS) Misconfiguration Exploits

Raxis’ Andrew Trexler adds to his Active Directory series with a thorough tutorial of Active[…]

Broadcast Attacks - Responder
AD Series: How to Perform Broadcast Attacks Using NTLMRelayx, MiTM6 and Responder

Andrew Trexler continues his AD Series with an in-depth tutorial on broadcast Attacks using NTLMRelayx,[…]

How to Create an Active Directory Test Environment
How to Create an AD Test Environment

Andrew Trexler walks us through creating a simple AD test environment to test new hacks[…]

Exploiting GraphQL
Exploiting GraphQL

Exploiting GraphQL, a query language inspired by the structure & functionality of online data storage[…]