Device Code Phishing Is Underrated
Device code phishing is seriously underrated in my opinion. Yes, we’ve seen various device code phishing attacks targeting Microsoft cloud and Salesforce, ...
Recent Posts
Notes On Mac Red Teaming
Some notes after performing red teaming of the Mac environment of an F500 company.
Probing VirusTotal sandboxes for custom detection markers.
If you ever uploaded a live implant to VirusTotal you will notice many callbacks from sandboxes. A common defense faced by attackers is the use of EDRs that ...
Hello World!
I have migrated my blog from Keystone.js to Jekyll. I have also switched from self hosting to using GitHub pages.
Spear Phishing with Word Macro and Decoy Document
Microsoft Word macros are often utilized in spear phishing attacks. These documents typically include a lure to trick the user into clicking “Enable Content....