Lolware

• Obtaining Corporate Credentials via the Autodiscover Circus

  Sep 2, 2020
• Obtaining Corporate Credentials via the Autodiscover Circus

• Secure Privileged Active Directory management with PAM and JEA

  Jul 13, 2019
• Active Directory Domain Just Enough Administration and Privileged Administration

• Dumbest pentesting script to ever succeed

  Jul 9, 2019
• Getting service account credentials where you shouldn't

• Abusing Google Safebrowse for phished credentials URLs

  May 12, 2019
• What safebrowse looks for, and finding it yourself

• Hack The Box DAB Writeup Security Assessment

  Feb 3, 2019
• Hack the box 'DAB' writeup

• Reverse engineering GoDaddy's tracking script

  Jan 14, 2019
• Reverse engineering GoDaddy's tracking script