home.social

#redteaming — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #redteaming, aggregated by home.social.

  1. HackTheBox. Прохождение Mini Pro Lab Puppet

    Вам поручено провести проверку на проникновение в компанию Puppet Inc . Компания не разрешает передачу данных за пределы внутренней сети, поэтому внутри компании был создан сервер управления и контроля ( C2 ), и сотрудник запустил вредоносную программу для имитации успешной атаки с использованием методов социальной инженерии. Puppet — это небольшой сценарий Active Directory , в котором вы начинаете с уже работающего маяка Sliver C2 на внутренней системе. Он предназначен для отработки работы в рамках C2 -инфраструктуры в современной, сложной гибридной среде. Puppet разработан для специалистов по тестированию на проникновение и « красных команд », ищущих быструю и сложную лабораторию с уже настроенной C2 -инфраструктурой для отработки операций C2 . Эта лаборатория « Оператор красной команды уровня I » познакомит игроков со следующими темами: - Перечисление - Перечисление и атаки на Active Directory - Эксплуатация инфраструктуры DevOps - Боковое перемещение - Локальное повышение привилегий - Операции C2

    habr.com/ru/articles/1039202/

    #hackthebox #htb #redteam #redteaming #pentest #pentesting

  2. HackTheBox. Прохождение Mini Pro Lab Puppet

    Вам поручено провести проверку на проникновение в компанию Puppet Inc . Компания не разрешает передачу данных за пределы внутренней сети, поэтому внутри компании был создан сервер управления и контроля ( C2 ), и сотрудник запустил вредоносную программу для имитации успешной атаки с использованием методов социальной инженерии. Puppet — это небольшой сценарий Active Directory , в котором вы начинаете с уже работающего маяка Sliver C2 на внутренней системе. Он предназначен для отработки работы в рамках C2 -инфраструктуры в современной, сложной гибридной среде. Puppet разработан для специалистов по тестированию на проникновение и « красных команд », ищущих быструю и сложную лабораторию с уже настроенной C2 -инфраструктурой для отработки операций C2 . Эта лаборатория « Оператор красной команды уровня I » познакомит игроков со следующими темами: - Перечисление - Перечисление и атаки на Active Directory - Эксплуатация инфраструктуры DevOps - Боковое перемещение - Локальное повышение привилегий - Операции C2

    habr.com/ru/articles/1039202/

    #hackthebox #htb #redteam #redteaming #pentest #pentesting

  3. HackTheBox. Прохождение Mini Pro Lab Puppet

    Вам поручено провести проверку на проникновение в компанию Puppet Inc . Компания не разрешает передачу данных за пределы внутренней сети, поэтому внутри компании был создан сервер управления и контроля ( C2 ), и сотрудник запустил вредоносную программу для имитации успешной атаки с использованием методов социальной инженерии. Puppet — это небольшой сценарий Active Directory , в котором вы начинаете с уже работающего маяка Sliver C2 на внутренней системе. Он предназначен для отработки работы в рамках C2 -инфраструктуры в современной, сложной гибридной среде. Puppet разработан для специалистов по тестированию на проникновение и « красных команд », ищущих быструю и сложную лабораторию с уже настроенной C2 -инфраструктурой для отработки операций C2 . Эта лаборатория « Оператор красной команды уровня I » познакомит игроков со следующими темами: - Перечисление - Перечисление и атаки на Active Directory - Эксплуатация инфраструктуры DevOps - Боковое перемещение - Локальное повышение привилегий - Операции C2

    habr.com/ru/articles/1039202/

    #hackthebox #htb #redteam #redteaming #pentest #pentesting

  4. HackTheBox. Прохождение Mini Pro Lab Puppet

    Вам поручено провести проверку на проникновение в компанию Puppet Inc . Компания не разрешает передачу данных за пределы внутренней сети, поэтому внутри компании был создан сервер управления и контроля ( C2 ), и сотрудник запустил вредоносную программу для имитации успешной атаки с использованием методов социальной инженерии. Puppet — это небольшой сценарий Active Directory , в котором вы начинаете с уже работающего маяка Sliver C2 на внутренней системе. Он предназначен для отработки работы в рамках C2 -инфраструктуры в современной, сложной гибридной среде. Puppet разработан для специалистов по тестированию на проникновение и « красных команд », ищущих быструю и сложную лабораторию с уже настроенной C2 -инфраструктурой для отработки операций C2 . Эта лаборатория « Оператор красной команды уровня I » познакомит игроков со следующими темами: - Перечисление - Перечисление и атаки на Active Directory - Эксплуатация инфраструктуры DevOps - Боковое перемещение - Локальное повышение привилегий - Операции C2

    habr.com/ru/articles/1039202/

    #hackthebox #htb #redteam #redteaming #pentest #pentesting

  5. ----------------

    🎯 AI
    ===================

    AI red teaming applies adversarial methodology to large language models, exposing vulnerabilities that traditional security testing misses. The core problem: models like GPT, Claude, and Gemini reason in ways that fail unpredictably, without triggering alerts.

    Why traditional testing falls short

    Standard application security focuses on code vulnerabilities. LLMs introduce a different risk category. The model interprets language, and an attacker manipulates that interpretation rather than exploiting a logic bug. A simple prompt modification can bypass safety controls, extract training data, or produce harmful outputs. No alert fires.

    The Microsoft Copilot example

    Researchers demonstrated that Microsoft Copilot could be compromised through a single malicious email. This shows how AI-integrated business tools inherit model vulnerabilities and expose them to external manipulation. The model's ability to process email content becomes an attack vector.

    Red teaming methodology

    1. Scope definition: Establish rules of engagement. Specify in-scope targets and off-limits areas.

    2. Scenario design: Map the AI attack surface. Identify adversary paths, from data pipelines to prompt interfaces.

    3. Attack planning: Select tactics based on threat analysis. Options include prompt injection, data poisoning, and adversarial inputs.

    4. Execution: Launch attacks in sandboxed environments. Combine manual probing with automation. Monitor anomalies and document evidence.

    5. Reporting: Deliver comprehensive assessment with attack narratives. This provides organizations with a prioritized remediation roadmap.

    Common techniques
    • Prompt injection: Embedding malicious instructions in user input to hijack model control logic and override system prompts.
    • Data exfiltration: Tricking the model into revealing training data, user information, or system prompts.
    • Jailbreaks: Crafting inputs that bypass safety filters and ethical boundaries.
    • Data poisoning: Corrupting training data or context to manipulate model outputs.

    Observations

    The article frames AI red teaming as essential before deployment. This is reasonable, but the source does not independently verify all claims about vulnerability scope. The methodology is standard red team practice adapted for AI specifics. The field still lacks standardized frameworks.

    The distinction between code vulnerabilities and intent exploitation is operationally significant. Traditional fuzzing and penetration testing do not cover the language interpretation attack surface. Organizations integrating LLMs into critical infrastructure should treat red team assessment as a deployment prerequisite.

    🔹 AI #RedTeaming #LLMSecurity #PromptInjection #AdversarialML

    🔗 Source: blog.securelayer7.net/ai-red-t

  6. Microsoft Unveils AI-Powered Red Teaming Tools to Bolster Software Security

    Microsoft is shifting the conversation around AI safety from philosophical debates to hands-on action, empowering developers to build more secure software with innovative tools. With the launch of Rampart, a cutting-edge red-teaming tool, the company is putting AI-powered security into practice, helping developers…

    osintsights.com/microsoft-unve

    #AipoweredSecurity #RedTeaming #SoftwareSecurity #Microsoft #GenerativeAi

  7. Viele denken, der Übergang vom Penetrationstest ins Red Teaming sei eine logische, graduelle Weiterentwicklung. In der Praxis zeigt sich schnell: Es ist ein echter Perspektivwechsel.
    Die größten Unterschiede liegen nicht in den Tools, sondern im Mindset:
    🔹 OPSEC first – Jede Aktion wird hinterfragt: Welche Spuren hinterlasse ich? Wie reagiert der Verteidiger?
    🔹 Realismus vor Geschwindigkeit – Es geht nicht darum, möglichst schnell ans Ziel zu kommen, sondern einen echten Angreifer abzubilden.
    🔹 Kontinuierliches Lernen – Standard-Tools werden zunehmend erkannt. Wer sich nicht weiterentwickelt, wird sichtbar.
    🔹 Fehler als Lernmoment – Der Moment, in dem man erkannt wird, verändert die eigene Denkweise nachhaltig.
    In unserem neuen Blogartikel beschreibt Marcel Heisel, wie wir neue Mitarbeitende auf genau diesen Wechsel vorbereiten – und was dabei wirklich den Unterschied macht.
    👉 research.hisolutions.com/2026/
    #RedTeaming #Pentesting #CyberSecurity #OffensiveSecurity #OPSEC #InfoSec #ActiveDirectory

  8. I'm looking forward to our cybersecurity capture the flag trying out together afternoon! This event is free and open for all genders. No registration required, just show up with your computer (or borrow one from us).
    More info on the website. :)

    And they're are always cockies, offline and with real life crumbles. 😅

    #it #cybersecurity #fliNTA #feminist #Frauen #linux #meetup #opensource #ctf #ccc #c3w #tu #University #selforganized #vienna #Austria #Wien #meetup #learning #workshop #cyberchef #hacking #ethicalHacking #redteaming
    #blueteaming
    @totientfunction @c3wien

  9. I'm looking forward to our cybersecurity capture the flag trying out together afternoon! This event is free and open for all genders. No registration required, just show up with your computer (or borrow one from us).
    More info on the website. :)

    And they're are always cockies, offline and with real life crumbles. 😅

    #it #cybersecurity #fliNTA #feminist #Frauen #linux #meetup #opensource #ctf #ccc #c3w #tu #University #selforganized #vienna #Austria #Wien #meetup #learning #workshop #cyberchef #hacking #ethicalHacking #redteaming
    #blueteaming
    @totientfunction @c3wien

  10. I'm looking forward to our cybersecurity capture the flag trying out together afternoon! This event is free and open for all genders. No registration required, just show up with your computer (or borrow one from us).
    More info on the website. :)

    And they're are always cockies, offline and with real life crumbles. 😅

    #it #cybersecurity #fliNTA #feminist #Frauen #linux #meetup #opensource #ctf #ccc #c3w #tu #University #selforganized #vienna #Austria #Wien #meetup #learning #workshop #cyberchef #hacking #ethicalHacking #redteaming
    #blueteaming
    @totientfunction @c3wien

  11. I'm looking forward to our cybersecurity capture the flag trying out together afternoon! This event is free and open for all genders. No registration required, just show up with your computer (or borrow one from us).
    More info on the website. :)

    And they're are always cockies, offline and with real life crumbles. 😅

    #it #cybersecurity #fliNTA #feminist #Frauen #linux #meetup #opensource #ctf #ccc #c3w #tu #University #selforganized #vienna #Austria #Wien #meetup #learning #workshop #cyberchef #hacking #ethicalHacking #redteaming
    #blueteaming
    @totientfunction @c3wien

  12. I'm looking forward to our cybersecurity capture the flag trying out together afternoon! This event is free and open for all genders. No registration required, just show up with your computer (or borrow one from us).
    More info on the website. :)

    And they're are always cockies, offline and with real life crumbles. 😅

    #it #cybersecurity #fliNTA #feminist #Frauen #linux #meetup #opensource #ctf #ccc #c3w #tu #University #selforganized #vienna #Austria #Wien #meetup #learning #workshop #cyberchef #hacking #ethicalHacking #redteaming
    #blueteaming
    @totientfunction @c3wien

  13. New blog post!

    This time I talk about my new favorite evasive shellcode loader, Charon. I give a brief overview about what it does, how it works and which techniques it uses.

    Also a brief addendum for enjoyers of bloated Implants such as Sliver.

    ti-kallisti.com/general/ms/des

    #InfoSec #Malware #Shellcode #RedTeam #RedTeaming #Pentesting #Charon #Sliver #Merlin #Mythic

  14. New blog post!

    This time I talk about my new favorite evasive shellcode loader, Charon. I give a brief overview about what it does, how it works and which techniques it uses.

    Also a brief addendum for enjoyers of bloated Implants such as Sliver.

    ti-kallisti.com/general/ms/des

    #InfoSec #Malware #Shellcode #RedTeam #RedTeaming #Pentesting #Charon #Sliver #Merlin #Mythic

  15. New blog post!

    This time I talk about my new favorite evasive shellcode loader, Charon. I give a brief overview about what it does, how it works and which techniques it uses.

    Also a brief addendum for enjoyers of bloated Implants such as Sliver.

    ti-kallisti.com/general/ms/des

    #InfoSec #Malware #Shellcode #RedTeam #RedTeaming #Pentesting #Charon #Sliver #Merlin #Mythic

  16. New blog post!

    This time I talk about my new favorite evasive shellcode loader, Charon. I give a brief overview about what it does, how it works and which techniques it uses.

    Also a brief addendum for enjoyers of bloated Implants such as Sliver.

    ti-kallisti.com/general/ms/des

    #InfoSec #Malware #Shellcode #RedTeam #RedTeaming #Pentesting #Charon #Sliver #Merlin #Mythic

  17. New blog post!

    This time I talk about my new favorite evasive shellcode loader, Charon. I give a brief overview about what it does, how it works and which techniques it uses.

    Also a brief addendum for enjoyers of bloated Implants such as Sliver.

    ti-kallisti.com/general/ms/des

    #InfoSec #Malware #Shellcode #RedTeam #RedTeaming #Pentesting #Charon #Sliver #Merlin #Mythic

  18. Halo semua! Saya Analis Siber Purwakarta. Saya mendokumentasikan perjalanan belajar saya di bidang #CyberSecurity, fokus pada #RedTeaming, #PenetrationTesting, dan analisis #CVE.

    Saat ini saya sedang mendalami Python untuk networking dan riset kerentanan. Cek dokumentasi teknis saya di sini: analis-siber-purwakarta.blogsp

    #Indonesia #Infosec #Python #LearningJourney

  19. Halo semua! Saya Analis Siber Purwakarta. Saya mendokumentasikan perjalanan belajar saya di bidang #CyberSecurity, fokus pada #RedTeaming, #PenetrationTesting, dan analisis #CVE.

    Saat ini saya sedang mendalami Python untuk networking dan riset kerentanan. Cek dokumentasi teknis saya di sini: analis-siber-purwakarta.blogsp

    #Indonesia #Infosec #Python #LearningJourney

  20. Halo semua! Saya Analis Siber Purwakarta. Saya mendokumentasikan perjalanan belajar saya di bidang #CyberSecurity, fokus pada #RedTeaming, #PenetrationTesting, dan analisis #CVE.

    Saat ini saya sedang mendalami Python untuk networking dan riset kerentanan. Cek dokumentasi teknis saya di sini: analis-siber-purwakarta.blogsp

    #Indonesia #Infosec #Python #LearningJourney

  21. Halo semua! Saya Analis Siber Purwakarta. Saya mendokumentasikan perjalanan belajar saya di bidang #CyberSecurity, fokus pada #RedTeaming, #PenetrationTesting, dan analisis #CVE.

    Saat ini saya sedang mendalami Python untuk networking dan riset kerentanan. Cek dokumentasi teknis saya di sini: analis-siber-purwakarta.blogsp

    #Indonesia #Infosec #Python #LearningJourney

  22. Here's the thing, there may be more people (if not 99% of the people) on other social networks, but at the end the day, I still need to actually *do something* with my projects or it is all just idle entertainment under the guise of not or I have no idea.

    I just want to nerd out on things that are cool to nerd out on and be able to talk about it with people that get it. That is all here.

    Here are all the hashtags of things I'm working on and will be posting about, what I'm interested in from others, and whatever adjacent from folks in those spheres bubble up (I want a clubhouse).

    #Malware #RedTeaming #PurpleTeaming #SocialEngineering #Vishing #ReverseEngineering

  23. Recently completed the #CAPT (#Certified #Associate #Penetration #Tester) Certification and received the #CWSE (#Certified #Web #Security #Expert) today.

    Thanks a lot #Hackviser. This will help add up to the knowledge I have in my #cybersecurity #cybersec #ethicalhacking #redteaming #informationsecurity #infosec skills including the knowledge and skills gotten from my #networking #course from the #CompTIA CompTIA, Inc. #Network+ that I completed recently as well.

    However, for me, University of the People is pretty much like a refresher because everything I expected from them has basically already been covered in courses I’ve already done. Haha!

  24. Recently completed the #CAPT (#Certified #Associate #Penetration #Tester) Certification and received the #CWSE (#Certified #Web #Security #Expert) today.

    Thanks a lot #Hackviser. This will help add up to the knowledge I have in my #cybersecurity #cybersec #ethicalhacking #redteaming #informationsecurity #infosec skills including the knowledge and skills gotten from my #networking #course from the #CompTIA CompTIA, Inc. #Network+ that I completed recently as well.

    However, for me, University of the People is pretty much like a refresher because everything I expected from them has basically already been covered in courses I’ve already done. Haha!

  25. Recently completed the #CAPT (#Certified #Associate #Penetration #Tester) Certification and received the #CWSE (#Certified #Web #Security #Expert) today.

    Thanks a lot #Hackviser. This will help add up to the knowledge I have in my #cybersecurity #cybersec #ethicalhacking #redteaming #informationsecurity #infosec skills including the knowledge and skills gotten from my #networking #course from the #CompTIA CompTIA, Inc. #Network+ that I completed recently as well.

    However, for me, University of the People is pretty much like a refresher because everything I expected from them has basically already been covered in courses I’ve already done. Haha!

  26. Recently completed the #CAPT (#Certified #Associate #Penetration #Tester) Certification and received the #CWSE (#Certified #Web #Security #Expert) today.

    Thanks a lot #Hackviser. This will help add up to the knowledge I have in my #cybersecurity #cybersec #ethicalhacking #redteaming #informationsecurity #infosec skills including the knowledge and skills gotten from my #networking #course from the #CompTIA CompTIA, Inc. #Network+ that I completed recently as well.

    However, for me, University of the People is pretty much like a refresher because everything I expected from them has basically already been covered in courses I’ve already done. Haha!

  27. Recently completed the #CAPT (#Certified #Associate #Penetration #Tester) Certification and received the #CWSE (#Certified #Web #Security #Expert) today.

    Thanks a lot #Hackviser. This will help add up to the knowledge I have in my #cybersecurity #cybersec #ethicalhacking #redteaming #informationsecurity #infosec skills including the knowledge and skills gotten from my #networking #course from the #CompTIA CompTIA, Inc. #Network+ that I completed recently as well.

    However, for me, University of the People is pretty much like a refresher because everything I expected from them has basically already been covered in courses I’ve already done. Haha!

  28. HackTheBox. Прохождение Falafel. Уровень — Сложный

    Прохождение сложной Linux машины на платформе HackTheBox под названием Falafel . Предварительно нужно подключиться к площадке HackTheBox по VPN . Желательно использовать отдельную виртуальную машину. Учимся работать с готовыми эксплоитами и metasploit -ом. Разбираем SQLi (Boolean-based Blind), PHP Type Juggling Attack (Magic Hashes), Filename Truncation Attack to Upload a PHP Script.

    habr.com/ru/articles/1002710/

    #hackthebox #htb #redteam #redteaming #pentest #pentesting

  29. HackTheBox. Прохождение HackTheBox — Chatterbox. Уровень — Средний

    Прохождение средней Windows машины на платформе HackTheBox под названием Chatterbox . Предварительно нужно подключиться к площадке HackTheBox по VPN . Желательно использовать отдельную виртуальную машину. Учимся работать с готовыми эксплоитами и metasploit -ом.

    habr.com/ru/articles/1002286/

    #hackthebox #htb #redteam #redteaming #pentest #pentesting

  30. HackTheBox. Прохождение CrimeStoppers. Уровень — Сложный

    Прохождение сложной Linux машины на платформе HackTheBox под названием CrimeStoppers . Предварительно нужно подключиться к площадке HackTheBox по VPN . Желательно использоваться отдельную виртуальную машину. Реверсим приложение c помощью IDA PRO , потрошим Thunderbird, находим RCE на портале.

    habr.com/ru/articles/1001618/

    #hackthebox #htb #pentest #pentesting #redteam #redteaming

  31. HackTheBox. Прохождение FluxCapacitor. Уровень — Средний

    Прохождение средней Linux машины на платформе HackTheBox под названием FluxCapacitor . Предварительно нужно подключиться к площадке HackTheBox по VPN . Желательно использоваться отдельную виртуальную машину. Будет рассмотрен WAF и попытки его обойти.

    habr.com/ru/articles/1000164/

    #hackthebox #htb #pentest #pentesting #redteam #redteaming

  32. HackTheBox. Прохождение Bashed. Для новичков. Ультра-легкий

    Прохождение одной из самой легкой машины на платформе HackTheBox под названием Bashed . Предварительно нужно подключиться к площадке HackTheBox по VPN . Желательно использоваться отдельную виртуальную машину.

    habr.com/ru/articles/996722/

    #hackthebox #htb #pentest #pentesting #redteam #redteaming

  33. So, one of my resolutions this year was to write more code.
    I love to break stuff, but last year I reignited my passion for coding and I would really love to contribute to the community that has given me so much and continues to do so.
    And contributing works a lot better by creating, rather than breaking.

    So I created a codeberg account. And I already have a first repo published!
    I called it Axmar.
    Axmar is a C# implementation of the SilentHarvest technique that was published last year.
    It uses backup access and rarely used APIs to (mostly) stealthily read the local credentials database in Windows system.

    Enjoy!

    codeberg.org/Ti-Kallisti/Axmar

    #foss #coding #infosec #malware #pentesting #redteaming #codeberg #windows #csharp

  34. Ever dream about running your C2 agent directly to memory without leaving a file and masquerade as a legit service? Say no more.
    The process can run without filesystem traces, no history of execution, and can masquerade as a benign, legitimate process in ps -aux.

    Several APT groups, cryptojackers, and malware campaigns was observed to exploit similar tactic in history to avoid detection and establish persistence. This material will walk you through the process on how a one-liner Perl code can make malware stay undetected under the radar for years.

    Perly Shells - In-memory malware executiion with Perl.
    lnkd.in/grBBXqUb

    #cybersecurity #evasion #FilelessMalware #Malware #EthicalHacking #RedTeaming

  35. Ever dream about running your C2 agent directly to memory without leaving a file and masquerade as a legit service? Say no more.
    The process can run without filesystem traces, no history of execution, and can masquerade as a benign, legitimate process in ps -aux.

    Several APT groups, cryptojackers, and malware campaigns was observed to exploit similar tactic in history to avoid detection and establish persistence. This material will walk you through the process on how a one-liner Perl code can make malware stay undetected under the radar for years.

    Perly Shells - In-memory malware executiion with Perl.
    lnkd.in/grBBXqUb

    #cybersecurity #evasion #FilelessMalware #Malware #EthicalHacking #RedTeaming

  36. Neue HiWay-Podcast-Folge: „Auf leisen Sohlen – Wie Red-Teaming Menschen und Prozesse im Ernstfall herausfordert und prüft.“ youtu.be/wz6sGs5VzCM Security
    Consultant Marcel Heisel erzählt uns, wie Red-Teaming Unternehmen auf Herz und Nieren prüft – von unbemerkten Netzwerkzugängen bis hin zu physischen Schlupflöchern. Moderation: Lena Morgenroth

    YouTube: youtu.be/wz6sGs5VzCM
    Spotify: open.spotify.com/show/6FwPurxO
    Apple: podcasts.apple.com/us/podcast/

    Moderierte Expertentalks zu Themen, Trends & Herausforderungen aus
    ✔️ IT-Sicherheit
    ✔️ Digitale Transformation
    ✔️ Business Continuity & Krisenmanagement
    ✔️ IT-Management
    ✔️ Regulatorik, Compliance & Governance

    Die nächste HiWay-Folge erscheint am 17. Dezember.

    #Digitalisierung #ITSicherheit #HiSolutions #HiWay #CyberSecurity #Ransomware #Prävention #Resilienz #RedTeaming #EthicalHacking #ITSecurity #SocialEngineering #Phishing