Articles Categorized as How To
-
PSE & Red Team Series: LootingNathan Anderson continues his Physical Social Engineering and Red Team series with the final step: looting. Learn what shows value to stakeholders in reports. -
Building Security Tools from Source to Bypass Endpoint SecurityEndpoint security detects many malicious files created with pentest tools, but pentesters can sometimes bypass this by rebuilding source code. Learn how here. -
Cool Tools: Bloodhound CEBloodHound’s Community Edition has everything a penetration tester needs to enumerate relationships in a domain in order to gain more access, even Domain Admin. -
Defense in Depth Against Linux Kernel Privilege Escalation: A Practical Guide for Container WorkloadsWith current local privilege escalation exploits like Copy Fail and Dirty Frag active in the wild, harden your defenses to halt attacks even before patching. -
Cool Tools: NetExec (NXC) FundamentalsNow that CrackMapExec is no more, how is a pentester to rapidly test credentials, enumerate assets, spray passwords, and more? Learn the basics of NetExec here. -
Bypassing ChatGPT’s Open-Source Model Security Restrictions for Agentic HackingRyan Chaplin wondered what it would take to bypass ChatGPT’s open-source model security restrictions to allow AI to hack his website. See how he did it here.
