Developing Cobalt Strike BOFs with Visual Studio

Introduction Cobalt Strike beacon object files (BOFs) is a feature that was added to the beacon in order to allow rapid beacon extendibility in a more OPSEC way…Read more...

Blogs

  • Bypassing Microsoft Defender for Endpoint in Red Teaming assessments

    Nowadays it is common for Red Teamers to find more or less advanced endpoint and network protection mechanisms during their assessments. With a big share of the enterprise market taken by Microsoft, it is important to be familiar with Windows/Azure AD and Microsoft 365 Defender. In one of our latest assessments we…Read more...

  • Best INSIGHT IN YOUR CYBERSECURITY WITH RED TEAMING OR A SCENARIO BASED PENTEST

    Most organizations have the basic security of their ICT infrastructures covered and thereby strengthened. However, cyber criminals are extremely smart and are constantly developing new tools and techniques to anticipate these defenses. To reduce the distance, more is needed than just taking basic measures: a better…Read more...

  • Continuous security code reviews for Agile teams

    Secure rapid innovation Security often struggles to keep up with the rapid code releases produced by dev teams. The classic periodic pentest has been the norm for years but is not a perfect fit when you ship new features at high speed. Security in your slipstream When you want to go fast and secure, you need early…Read more...

  • Developing Cobalt Strike BOFs with Visual Studio

    Introduction Cobalt Strike beacon object files (BOFs) is a feature that was added to the beacon in order to allow rapid beacon extendibility in a more OPSEC way. The BOF file is a common object file format (COFF) object that will be loaded and executed in the same process as the beacon, and therefore eliminates the…Read more...

  • Android adb reverse tethering mitm setup revised

    Introduction In a previous blogpost, I've written how to combine Gnirehtet & proxychains in order to intercept traffic from mobile apps over adb while on a VPN. After some time, the setup seemed to be somewhat buggy and slow. A contact of @FSDominguez suggested to look into port forwarding. I'd like to present a…Read more...

Questions or feedback?

Call usphone
Mail usmail