- Using a .scf file to capture domain or workgroup user credentials with responder. https://1337red.wordpress.com/using-a-scf-file-to-gather-hashes/ 7 comments netsec
- Building and Attacking an Active Directory lab with PowerShell - Easy to follow lab guide includes kerberoasting https://1337red.wordpress.com/building-and-attacking-an-active-directory-lab-with-powershell/ 20 comments netsec
- Using the DDE attack with PowerShell Empire https://1337red.wordpress.com/using-the-dde-attack-with-powershell-empire/ 5 comments netsec