In modern Active Directory (AD) engagements, the path to Domain Admin is rarely paved with zero-day exploits. Instead, it is constructed from “features”—misconfigured permissions, legacy
Category: Penentration Test
Supercharging Velociraptor with AI and Cursor
Why Velociraptor Needs an AI Assistant Velociraptor is a powerful DFIR and threat‑hunting platform: it gives you deep endpoint visibility, flexible VQL hunts, and scalable
Seeing Through the Noise: A Guide to Hunting Lateral Movement with Velociraptor and Neo4j
So, you’ve spotted an attacker on one of your machines. Great start! But the job’s not over. The real headache is figuring out where they’ve
Abusing SQL Server Impersonation Privileges: A Technical Walkthrough
In this blog post, we explore how attackers can abuse the IMPERSONATE privilege in Microsoft SQL Server to escalate privileges, execute system-level commands, and establish
Exploiting ASP Viewstate on Delivering CobaltStrike
Hi Guys, Just another weekend, and I decided to spend some time on my penetration testing exercise. As I was working on the pentest, I
Powershell Encoding for CobaltStrike
Hellow Friends, I am currently engaged in a small pentesting exercise to make the most of my spare time during the weekend. One topic that
Cyber Security Architect | Red/Blue Teaming | Exploit/Malware Analysis 