August 31, 2017 | Posted in Red Teams by Jonathan Renard   Hostile Airwaves On internal engagements, poisoning name resolution requests on the local network (à la Responder) is one of the tried and true methods of obtaining that coveted set of initial Domain credentials.  While this approach has worked on many clients (and has even given up […]

August 10, 2017 | Posted in Red Teams by Barrett Adams     Background During an email phishing engagement, one of the attacks we typically use is a malicious Microsoft Office macro. For the unfamiliar, macros are bits of code embedded in Office documents. They are written in Visual Basic for Applications (VBA), and are intended to […]