Penetration Testing
January 27, 2016

Throwback Thursday – A Guide to Configuring Throwback

It's not Thursday, but today we're going back to DEF CON 22 where we released…
Read More
Penetration TestingPowerShell
December 28, 2015

The Evolution of Offensive PowerShell Invocation

By now, PowerShell should be in every offensive security person's arsenal. There are a plethora of PowerShell projects now…
Read More
Penetration Testing
December 4, 2015

Malicious Outlook Rules

Occasionally, we come across interesting scenarios that require thinking outside the box. For example: What if…
Read More
Penetration TestingPowerShell
October 2, 2015

Hashdump without the DC using DCSync (because we all wanted it)

Update: It was brought to our attention that we mistakenly forgot to credit a few…
Read More
Exploits
August 12, 2015

Exploiting MS15-076 (CVE-2015-2370)

A few weeks ago (July 14, 2015), Microsoft had a busy patch Tuesday fixing quite a…
Read More
Penetration Testing
March 5, 2015

ActiveX + XSS = ActiveXSS Pwnage!

On a recent web application penetration test, the in-scope web apps were running several ActiveX…
Read More
News
February 14, 2014

DEF CON 22!!

Silent Break Security's founder, Brady Bloxham, spoke at DEF CON 22 on getting Windows to…
Read More
News
August 22, 2013

The Illusion of Security

I’m often asked about the top vulnerabilities identified in a penetration test, or similarly, the…
Read More