Understanding Cobalt Strike Profiles - Updated for Cobalt Strike 4.6
A deep dive into specifics around cobalt strike malleable c2 profiles and key information that is new in cobalt strike 4.6
purpleteam
AutoPoC - Validating the Lack of Validation in PoCs
HoneyPoC was a project to look at how popular CVE PoCs could be. AutoPoC took that concept and enabled the mass creation of disinformation. Also, Data is beautiful.
Social Profiling - OSINT for Red/Blue
One of the areas that I love when it comes to red/purple engagements is profiling organizations on LinkedIn and GitHub, looking for crucial information that can lead to more juicy enumeration.
Old but Gold - Attack and Defend the Sys Admins
Older techniques used in a sysadmin space, weaponised for red teaming and how to detect them from a blue team perspective.
Pass the Way to DA
Pass the X attacks originate from having a piece of information, in these examples this will be a hash, a set of credentials or a Kerberos ticket and then leveraging them for lateral movement throughout a network.