Adversarial SysAdmin - The Key to Effective Living off the Land In my previous role, we frequently employed ‘living off the land’ strategies, rarely using... 2024-10-27 21:58:44 | 阅读: 7 | 收藏 | ZephrSec - Adventures In Information Security - blog.zsec.uk pwd php passwd

(Re)Building the Ultimate Homelab NUC Cluster - Part 1 Explore my blog series on building a NUC cluster with Proxmox! Learn about connecting hosts, se... 2024-9-8 19:21:35 | 阅读: 10 | 收藏 | ZephrSec - Adventures In Information Security - blog.zsec.uk homarr proxmox portainer download volume1

Side-by-Side with HelloJackHunter: Unveiling the Mysteries of WinSxS This post explores Windows Side-by-Side (WinSxS) and DLL hijacking, deep-diving some tooling I'... 2024-5-12 17:1:42 | 阅读: 7 | 收藏 | ZephrSec - Adventures In Information Security - blog.zsec.uk windows winsxs fileversion powershell hijacking

BlackVue Dashcams - It's not a bug, it is a feature Blackvue cloud connected dashcams leak your location and allow anyone to view your video feed w... 2024-3-16 07:41:34 | 阅读: 15 | 收藏 | ZephrSec - Adventures In Information Security - blog.zsec.uk blackvue cloud dashcam colin security

Failing Upwards: Put on your own mask before assisting others (Pt2) Reflecting on my experiences with various leaders, managers, and bosses, I've gained insights i... 2024-1-29 00:43:8 | 阅读: 16 | 收藏 | ZephrSec - Adventures In Information Security - blog.zsec.uk leadership qualities maintaining zephrsnaps experiences

Failing Upwards (or not) (Pt1) If you find yourself on the path of leading a team, make sure you set critical baselines with y... 2024-1-29 00:42:48 | 阅读: 19 | 收藏 | ZephrSec - Adventures In Information Security - blog.zsec.uk teaching leadership security taught learnt

Security For Everyone - 2023 Update This post will go through some of the steps you can take as an individual to secure the account... 2023-8-20 18:3:30 | 阅读: 10 | 收藏 | ZephrSec - Adventures In Information Security - blog.zsec.uk security bitwarden lastpass advice

WebSockets are a Pain - A Journey in Learning and Leveraging Before I dive in and show examples of implementations that worked, it is worth doing a quick ex... 2023-4-3 16:5:7 | 阅读: 8 | 收藏 | ZephrSec - Adventures In Information Security - blog.zsec.uk websockets caddy client github c2

Ticket Fraud Scammers - An Investigation If you're reading this, it's a blog post that's not my regular write-up but more of an investig... 2023-2-24 20:14:47 | 阅读: 9 | 收藏 | ZephrSec - Adventures In Information Security - blog.zsec.uk raise tweets hypothesis gig

LTR102 - Published Finally! Hello Everyone, This a short blog post to announce I have finally published my second boo... 2022-12-24 02:20:46 | 阅读: 8 | 收藏 | ZephrSec - Adventures In Information Security - blog.zsec.uk paul career advice security morgan

BYODC - Bring Your Own Domain Controller Over the years, I've been doing internal testing and compromising domains; adding machines to the d... 2022-11-5 01:19:42 | 阅读: 10 | 收藏 | ZephrSec - Adventures In Information Security - blog.zsec.uk machine ntds windows dit ntdsutil

Multiple Paths to Compromise An Environment Attack paths and compromising systems are something we, as attackers, thrive in. Many areas of... 2022-10-5 00:10:12 | 阅读: 7 | 收藏 | ZephrSec - Adventures In Information Security - blog.zsec.uk network passwords attacker security

ZTH-CH4: Hook & Sling - Phishing For Gold To this date, phishing is one of the most prevalent first stages of entry to an organisation, a... 2022-9-26 17:41:48 | 阅读: 9 | 收藏 | ZephrSec - Adventures In Information Security - blog.zsec.uk phishing phish stages coerce

HoneyPoC is Dead - Long Live Disinformation This short blog post explains what each tool does and overviews the use/reason for the release. R... 2022-9-22 10:9:45 | 阅读: 7 | 收藏 | ZephrSec - Adventures In Information Security - blog.zsec.uk autopoc github sandboxspy base32 overviews

Free Audi MMI Maps and Speedcams Update 2024 Update Audi Maps and Speedcams for free; files and steps are included for Maps 2022/2023. All w... 2022-8-24 18:7:52 | 阅读: 10 | 收藏 | ZephrSec - Adventures In Information Security - blog.zsec.uk mmi audi pocketgps cameras navigation

Free Audi MMI Maps and Speedcams Update 2022/2023 Update Audi Maps and Speedcams for free; files and steps are included for Maps 2022/2023. All w... 2022-8-24 18:7:52 | 阅读: 13 | 收藏 | ZephrSec - Adventures In Information Security - blog.zsec.uk mmi audi navigation cameras pocketgps

Orchestrating deployment of @myexploit2600's hacklab with Ansible and Vagrant [REDUX] Deploy your hacklab using Ansible and Vagrant for fast, repeatable results. Building on the wor... 2022-7-26 22:10:3 | 阅读: 16 | 收藏 | ZephrSec - Adventures In Information Security - blog.zsec.uk windows hacklab playbook machine workstation

Azure Attack Paths: Common Findings and Fixes (Part 1) Learning about cloud penetration testing is nothing new, but it is undoubtedly an area where a lot... 2022-6-19 23:57:53 | 阅读: 10 | 收藏 | ZephrSec - Adventures In Information Security - blog.zsec.uk powershell cloudshell azuread client microsoft

Understanding Cobalt Strike Profiles - Updated for Cobalt Strike 4.6 A deep dive into specifics around cobalt strike malleable c2 profiles and key information that... 2022-4-13 18:53:0 | 阅读: 10 | 收藏 | ZephrSec - Adventures In Information Security - blog.zsec.uk beacon c2 memory limits proxy

Chasing the Silver Petit Potam to Domain Admin Exploiting Petit Potam in a different way to force some downgrade and protocol attacks.I wa... 2022-2-20 10:59:23 | 阅读: 8 | 收藏 | ZephrSec - Adventures In Information Security - blog.zsec.uk ntlmv1 responder dc01 silver