Proud day for @JUMPSEC to have some of our #redteam #research posted on @BleepinComputer! Well done @CorbridgeMax and @tde_sec. If you've not already then drop a follow as we've got much more in pipeline! #security #IDOR #Microsoft #bug #bugbounty

Kicking-off a new year of LABS with BYOTB (Bring Your Own Trusted Binary) by our red teamer Dave - opening BSides London 2024 with this very talk! Read about using trusted binaries to tunnel through our target networks, circumventing EDR and more!

This week is a foray into the world of disaster recovery, and the reasons that often prevent organisations from creating and battle hardening their Business Continuity Plans (BCPs):

Learn more about Malicious Template Injection's in this week's blog post from our Detection and Response team!

This week's blog is a practical guide to DLL Hijacking - check it out!

Imagine the feeling of a long-forgotten canary token triggering in one of your client's estates, which leads you down a path to catch and remove a sophisticated red team... No need to imagine, as @umairq_ has written up a blog:

This week's blog post is about some TTPs that are as old as time itself, but continue to land us quick wins on engagements. Check out our modern approach to relaying attacks, and how to abuse them:

Stumbled on a rogue USB and wondered if it's safe to plug it in? Fear no more! Our DART's Part 2 guide on USB forensics provides a roadmap to analyze such devices safely!🫡 Check it out: #DFIR #DART #IR #soclife #detectionandresponse #infosec #rogueUSB

Blog Post: The process behind investigating a malicious USB stick which landed on a client's desk! This week's post is from our Detection and Response Team (DART). Check it out!

Check out this week's labs post on the current state of initial access security controls, and some guidance on how to bypass them! #initialaccess #bypass #securitycontrols #redteam

Would you rather pop an on-premise application, or a cloud-hosted one? This week @CorbridgeMax has explored the implications of cloud migration on application security. Check it out! #cloud #migration #redteam #appsec #AWS #Azure

Check out a super streamlined approach to bringing up an entire operational C2 infrastructure in just 5 mins in this week labs post! #C2 #infrastructure

Practical steps and gotcha's for securing mail gateways can be found in this weeks labs post, from a JUMPSEC consultant - Check it out! #SPF #DKIM #DMARC #phishing #protection

What happens when you give a red teamer a web application pentest? They shell it and write a custom DNS tunelling protocol to exfiltrate sensitive data 😎 Another great read this week: #aws #lambda #DNS #exfil #custom #protocol

Tool Release! We've been having a lot of fun recently bypassing swathes of security controls using alternative web technologies to smuggle payloads right past mail security products. We've open-sourced the tool that we've been using to leverage WASM:

Ever wondered what sort of exploits hit a honey pot server? In this week's blog post we dive into this question and do some malware analysis to understand what sort of exploits are being used out in the wild. Check it out: #malware #honeypot

We often include compromising #DevOps environments as end goals of our #cloud #redteam engagements. We've written up our thoughts on common attack paths in these environments, starting with #azure Check it out!

We've written up several lessons learned and gotcha's when it comes to pass spraying #M365 in this recent #blog post. We've been having a lot of fun with this attack recently on our #adversarial engagements. Check it out!

🚨 Tool Release 🚨 We've just open-sourced our #automation scripts for setting up #vulnerable #Azure environments to practice #cloud red teaming. It's basically free to run and has hints to help you along your journey if needed 💪 #AHHHZURE

Ending the year with a CVE from our Head of Adversarial Simulation @CorbridgeMax. Unauthenticated users are served the default Superuser account name and if the default password has been changed in IBM backup products, a single point of failure for backups

Listen to our #adversarial #simulation team discuss the lessons they have learned from delivering entirely cloud red teams! From initial access to action on objectives, they cover it all #redteam #azure #aws #gcp #podcast #CyberSecurity