Services
PROGRAM DEVELOPMENT
Overview
Developing Capabilities
Expert Support
Assessments
Penetration Testing
Red Team Engagements
Purple Team Assessments
Maturity Assessments
AD Attack Path Assessment
Solutions
BloodHound Enterprise
Training
Adversary Tactics Training Courses
Red Team Operations
Tradecraft Analysis
Detection
Vulnerability Research for Operators
Active Directory Security Fundamentals
Azure Security Fundamentals
Private Training
Talk to us
About
ABOUT US
Who We Are
Values
Team
Careers
News
Announcements
Newsroom
Resources
White Papers
Case Studies
Sponsored Tools
Vulnerability Acknowledgements
Datasheets
Blog
Events
Sponsored Events
Talks
Training Courses
Webinars
Contact Us
FEATURED BLOG
Your new best friend: Introducing BloodHound Community Edition
Read Post
See All Posts
All
Blog
Research
Solutions
Search
Blog
Latest Posts
Explore on Medium
9 Min Read | Feb 15
Abusing Azure App Service Managed Identity Assignments
Intro Azure App Service is a Platform-as-a-Service product that promises to improve web application deployment, hosting, availability, and security. Web Apps hosted by Azure App Service are organized into Azure [...]
8 Min Read | Feb 10
Telemetry Layering
Introduction Creating detections can be challenging. There often isn’t a “simple” way to detect something, and once we see an event that seems to correlate with the activity we are [...]
3 Min Read | Feb 08
Ghostwriter v3.2 Release
15 Min Read | Jan 25
At the Edge of Tier Zero: The Curious Case of the RODC
9 Min Read | Jan 18
The Defender’s Guide to Windows Services
7 Min Read | Jan 12
SCCM Site Takeover via Automatic Client Push Installation
13 Min Read | Dec 21
Passwordless Persistence and Privilege Escalation in Azure
Adversaries are always looking for stealthy means of maintaining long-term and stealthy persistence and privilege in a target environment. Certificate-Based Authentication (CBA) is an extremely attractive persistence option in Azure [...]
6 Min Read | Dec 01
Stalking inside of your Chromium Browser
Revisiting Remote Debugging Okay, you got your favorite agent running on the target machine. You did a process listing, but nothing interesting popped out. You searched through every possible thing, [...]
6 Min Read | Nov 14
Uncovering Window Security Events
Part 1: TelemetrySource Data is the foundation by which defense is built upon. This data can come from various telemetry sources — native logging, Endpoint Detection and Response (EDR) tools, network logging, [...]
PREV
<
2
3
4
5
6
7
8
>
NEXT
Get Started
Defend Against
Advanced Attacks
Talk to an Expert