Jun 27, 2025
Today Joe “The Machine” Skeen and I pwn the third and final realm in the world of GOAD (Game of Active Directory): essos.local! The way we go about it is to do a WinRM connection to our previously-pwned Kingslanding domain, coerce authentication out of MEEREEN (the DC for essos.local) and then capture/abuse the...
Jun 20, 2025
Today I share some tips on creating a better purple team experience for your customers, including:
- Setting up communication channels and cadence
- Giving a heads-up on highs/criticals during testing (not waiting until report time)
- Where appropriate, record videos of attacks to give them more context
Jun 13, 2025
In today’s tale of pentest pwnage I talk about a cool ADCS ESC3 attack – which I also did live on this week’s Tuesday TOOLSday. I also talk about Exegol’s licensing plans (and how it might break your pentest deployments if you use
Jun 6, 2025
Today I share some tips on presenting a wide variety of content to a wide variety of audiences, including:
- Knowing your audience before you touch PowerPoint
- Understanding your presentation physical hookups and presentation surfaces
- A different way to screen-share via Teams that...