In this part of the series, we will focus on Credential Access and the attacks that Kerberos can facilitate. In the first part of the Kerberos series, we’ve set the groundwork for the following ...

This post, is the first in the series and will aim to provide an overview of the protocol, from its beginnings to the different (ab)use techniques. Kerberos, again Brief History of Kerberos...

The abuse of misconfigured Access Control Lists is nothing new. However, it is still one of the main ways of lateral movement and privilege escalation within an active directory domain. In this ...

Although this is nothing new, these days I wanted to read and learn in depth how Active Directory Certificate Services works. For this purpose, I configured the ADCS, the CA and the vulnerable temp...

AWS pentesting may seem a bit annoying, but once you understand all the services and the possibilities of lateral movements and the potential for lateral movements and privilege escalation due to c...