Red Team

483 readers
1 users here now

Red Teamers are here to break into your stuff before the bad guys do, and help you secure it. This is a place to discuss novel research, pentest tools and techniques, physical security and post memes about the Blue Team.

Join us! We have cookies. Blue Team's cookies. >:)

founded 1 year ago
MODERATORS
administrator@infosec.pub
listing: all - local
1
4
Configuring the Software for Our Hardware Implant (blog.aermored.com)
submitted 1 year ago by dap@lemmy.onlylans.io to c/redteam@infosec.pub
0 comments fedilink
2
7
Hardware Implants as an Initial Access Vector (blog.aermored.com)
submitted 1 year ago by dap@lemmy.onlylans.io to c/redteam@infosec.pub
2 comments fedilink
 
 

From a recent engagement. We turned to hardware implants as an initial access vector to enable remote operations.

3
2
MalRDP: Implementing Rouge RDP Manually - Shorsec Cyber Security (shorsec.io)
submitted 1 year ago by dap@lemmy.onlylans.io to c/redteam@infosec.pub
0 comments fedilink
4
1
Attacking and Defending Kubernetes: Bust-A-Kube โ€“ Episode 1 | InGuardians (www.inguardians.com)
submitted 1 year ago by dap@lemmy.onlylans.io to c/redteam@infosec.pub
0 comments fedilink
5
1
New tool exploits Microsoft Teams bug to send malware to users (www.bleepingcomputer.com)
submitted 1 year ago by dap@lemmy.onlylans.io to c/redteam@infosec.pub
0 comments fedilink
6
1
Has anyone here taken the new OSCP exam? (infosec.pub)
submitted 1 year ago by nightowl@infosec.pub to c/redteam@infosec.pub
0 comments fedilink
 
 

In the middle of the depths of studying. Would love reviews or thoughts on the new exam! Words of encouragement welcome ๐Ÿ™‚

7
1
Microsoft Teams bug allows malware delivery from external accounts (www.bleepingcomputer.com)
submitted 1 year ago by dap@lemmy.onlylans.io to c/redteam@infosec.pub
0 comments fedilink
8
3
JWT authentication bypass via X-HTTP-Method-Override header (github.com)
submitted 1 year ago by 0xCBE@infosec.pub to c/redteam@infosec.pub
0 comments fedilink
9
1
Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access (github.com)
submitted 1 year ago by udunadan@infosec.pub to c/redteam@infosec.pub
0 comments fedilink
10
1
Active Directory Spotlight: Attacking The Microsoft Configuration Manager (SCCM/MECM) (www.securesystems.de)
submitted 1 year ago by dap@lemmy.onlylans.io to c/redteam@infosec.pub
0 comments fedilink
11
1
LOLBAS (lolbas-project.github.io)
submitted 1 year ago by alex_02@infosec.pub to c/redteam@infosec.pub
0 comments fedilink
 
 

Probably already posted and well known, but a nice place for all the native binaries baked into windows that can be used.

12
1
Tryhackme's red team thoughts (tryhackme.com)
submitted 1 year ago by NeonPayload@infosec.pub to c/redteam@infosec.pub
0 comments fedilink
 
 

Hey Red team crew, I'd love to hear everyones thoughts on the tryhackme's red team course. a lot of paid parts, but not all. I'd love to know what you think or if they're better courses

13
1
VMware ESXi Zero-Day Used by Chinese Espionage Actor to Perform Privileged Guest Operations on Compromised Hypervisors | Mandiant (www.mandiant.com)
submitted 1 year ago by dap@lemmy.onlylans.io to c/redteam@infosec.pub
0 comments fedilink
14
2
RedTeam toolkits (github.com)
submitted 1 year ago by NeonPayload@infosec.pub to c/redteam@infosec.pub
0 comments fedilink
 
 

No one has posted yet, So I'll be the first and drop this easy start github page.