How To

Blog Archive Category

The Exploit: Penetration Testing Insights From The Frontlines

The Exploit articles categorized as How To

Exploits, How To

AD Series: Using Evil-WinRM to Get NTDS Manually in Penetration Tests
By Andrew Trexler Principal Penetration Tester Andrew Trexler’s Active Directory series is back, showing how to use Evil-WinRM to copy NTDS.dit manually in penetration tests. March 11, 2025
How To, Password Cracking, Penetration Testing

Password Series: 8 Practical First Steps to Crack Difficult Passwords in Penetration Tests
By Ryan Chaplin From rulesets & hardware to wordlists and mask attacks, Lead Penetration Tester Ryan Chaplin shows how to crack difficult password hashes in penetration tests. February 25, 2025
How To, Red Team, Social Engineering

PSE & Red Team Series: OSINT & Reconnaissance
By Nathan Anderson Raxis lead penetration tester, Nathan Anderson, begins our PSE & Red Team series discussing the importance of OSINT and reconnaissance to begin the assessment. February 11, 2025
How To, Penetration Testing

Cool Tools Series: How Vim Powers Penetration Testing
By Andrew Trexler Principal Penetration Tester, Andrew Trexler, dives into Vim, a powerful command line tool for text files, and shows useful commands for penetration testing. January 14, 2025
How To, Penetration Testing

Cool Tools Series: Masscan for Penetration Testing
By Andrew Trexler Continuing our Cool Tools Series, Lead Penetration Tester Andrew Trexler shows how to use masscan for discovery scanning on large networks in penetration tests. December 3, 2024
How To, Password Cracking, Penetration Testing

Password Series: Defeating Emerging Password Security Trends with Psudohash for Penetration Testing
By Ryan Chaplin Lead Pentester Ryan Chaplin discusses emerging improvements in password security and how Psudohash can help bypass them on penetration tests. November 5, 2024