Lolware Blog
Round three at a website.
Encoding Neil Madden's Psychic Signatures
CVE-2022-21449 ASN1 Encoding
June 21, 20223 minsUsing Microsoft Sentinel to roll honey tokens on Windows
Proactive incident monitoring
May 09, 20222 minsExploit for many Wordpress themes - CVE-2022-0316
Exploit poc
February 04, 20221 minsUsing Azure MFA for on premises Active Directory
Protecting assets with Azure MFA without going cloud
December 02, 202111 minsNeutralising Script Based Ransomware
Neutralising Script based ransomware
July 25, 20213 minsReact XSS Protection Cheat Sheet
Secure use of React and XSS
June 20, 20218 minsObtaining Corporate Credentials via the Autodiscover Circus
Obtaining Corporate Credentials via the Autodiscover Circus
September 02, 20204 minsSecure Active Directory management with PAM and JEA
Active Directory Domain Just Enough Administration and Privileged Administration
July 13, 20199 minsDumbest pentesting script to ever succeed
Getting service account credentials where you shouldn't
July 09, 20191 mins