Lobsters
- A Case Study in Attacking KeePass http://www.harmj0y.net/blog/redteaming/a-case-study-in-attacking-keepass/ 2 comments security , windows
- You can authenticate to AD with a SSL certificate https://www.harmj0y.net/blog/activedirectory/certified-pre-owned/ 5 comments sysadmin
- GhostPack: a collection of new offensive security C# tools http://www.harmj0y.net/blog/redteaming/ghostpack/ 8 comments netsec
- Pass-the-Hash Is Dead: Long Live LocalAccountTokenFilterPolicy http://www.harmj0y.net/blog/redteaming/pass-the-hash-is-dead-long-live-localaccounttokenfilterpolicy/ 28 comments netsec
- Empire Powershell listener vulnerable to path traversal vulnerability http://www.harmj0y.net/blog/empire/empire-fails/ 5 comments netsec
- KeeThief – A Case Study in Attacking KeePass Part 2 http://www.harmj0y.net/blog/redteaming/keethief-a-case-study-in-attacking-keepass-part-2/ 24 comments netsec
- A Case Study in Attacking KeePass http://www.harmj0y.net/blog/redteaming/a-case-study-in-attacking-keepass/ 35 comments netsec
- Building an EmPyre with Python http://www.harmj0y.net/blog/empyre/building-an-empyre-with-python/ 4 comments netsec
- Domain Trusts: Why You Should Care http://www.harmj0y.net/blog/redteaming/domain-trusts-why-you-should-care/ 3 comments netsec
- Dumping a Domain’s Worth of Passwords With Mimikatz pt. 2 http://www.harmj0y.net/blog/powershell/dumping-a-domains-worth-of-passwords-with-mimikatz-pt-2/ 8 comments netsec
- Pass-the-Hash is Dead: Long Live Pass-the-Hash http://www.harmj0y.net/blog/penetesting/pass-the-hash-is-dead-long-live-pass-the-hash/ 4 comments netsec
- Pwnstaller 1.0: an obfuscated Pyinstaller loader http://www.harmj0y.net/blog/python/pwnstaller-1-0/ 6 comments netsec