Lolware Blog
Round three at a website.
Neutralising Script Based Ransomware
Neutralising Script based ransomware
July 25, 20213 minsReact XSS Protection Cheat Sheet
Secure use of React and XSS
June 20, 20218 minsObtaining Corporate Credentials via the Autodiscover Circus
Obtaining Corporate Credentials via the Autodiscover Circus
September 02, 20204 minsSecure Active Directory management with PAM and JEA
Active Directory Domain Just Enough Administration and Privileged Administration
July 13, 20199 minsDumbest pentesting script to ever succeed
Getting service account credentials where you shouldn't
July 09, 20191 minsAbusing Google Safebrowse for phished credentials URLs
What safebrowse looks for, and finding it yourself
May 12, 20193 minsHack The Box DAB Writeup Security Assessment
Hack the box 'DAB' writeup
February 03, 20195 minsReverse engineering GoDaddy's tracking script
Reverse engineering GoDaddy's tracking script
January 14, 20198 minsEnumerating Azure Federated Domains
Discovering more than just subdomains
May 09, 20182 mins