pentesting - ZeroSec - Adventures In Information Security

Build, Attack, Defend, Fix – Paving the way to DA

While most of us in the world of offensive security love getting domain administrator (DA) when doing assessments. How many of you know how the issue occurs, how to defend against it and how to properly remediate it?

LTR101: Writing or Receiving Your First Pentest Report

Feb 17, 2020 9 min read ltr101 basics pentesting ExpandingHorizons Getting Started learning reporting ZTH

A penetration test report is more often tailored to multiple reading groups and as a result needs to be broken down into multiple sections for easier digestion by the business.

Bloodhound 2.2 - A Tool for Many Tradecrafts

Jul 31, 2019 16 min read redteam pentesting hacking docker tool

Bloodhound is a tool for enumeration of an active directory environment. It maps out relationships between active directory objects and is useful for Pentesting and Red Teaming.

LTR101 - Facing Your Fears

Jul 9, 2018 2 min read pentesting learning

Following a wee dry spell of blog posts here's my latest(a wee quickie). At the time of writing this blog I've since done three security conference talks in my life so far!

LTR101 - Disposable Attack Containers (DAC)

Apr 2, 2018 6 min read docker pentesting learning ltr101

My take on using docker for disposable attack images, basically leveraging docker images for Bug Bounties & Pentesting.