ZeroSec - Adventures In Information Security
  • About Andy Gill/ZephrFish
  • Podcast
  • LTR101 Book
  • LTR101 Posts
  • ZtH Posts
  • Photo Blog
Locking Down SSH - The Right Way

Locking Down SSH - The Right Way

May 22, 2021 16 min read blueteamResearchbasics
A little guide for locking down a VPS or similar to ensure your SSH connection is as secure as can be.
Read Now Read Later
Andy Gill
By: Andy Gill
Social Profiling - OSINT for Red/Blue

Social Profiling - OSINT for Red/Blue

May 22, 2021 6 min read redteampurpleteamblueteamosint
One of the areas that I love when it comes to red/purple engagements is profiling organizations on LinkedIn and GitHub, looking for crucial information that can lead to more juicy enumeration.
Read Now Read Later
Andy Gill
By: Andy Gill
Old but Gold - Attack and Defend the Sys Admins

Old but Gold - Attack and Defend the Sys Admins

Mar 29, 2021 14 min read redteamblueteampurpleteam
Older techniques used in a sysadmin space, weaponised for red teaming and how to detect them from a blue team perspective.
Read Now Read Later
Andy Gill
By: Andy Gill
Paving The Way to DA - Complete Post (Pt 1,2 & 3)

Paving The Way to DA - Complete Post (Pt 1,2 & 3)

Mar 21, 2021 41 min read redteamblueteam
As this series is a three part and dives into how to get domain admin in a windows estate using different techniques I found it useful to link them altogether in one flowing
Read Now Read Later
Andy Gill
By: Andy Gill
Reviving and Refactoring DNS Enum

Reviving and Refactoring DNS Enum

Mar 21, 2021 2 min read bugbountytoolGetting Started
I have been using Lepus for a number of years as it is one of the better subdomain enumeration tools. I integrated some of the lessons learned from DNS Queue [https://github.com/
Read Now Read Later
Andy Gill
By: Andy Gill
Newer Posts
Page 3 of 20
Older Posts
Powered by Ghost
  • Donate
  • Github
  • Twitter
  • LinkedIn
  • Photo Blog