Видео

GREAT VIDEO! I love this video, I just bought a NUC and would love if you go through a updated security range video. I know you mentioned that doing this on the cloud would be taxing but I think it would beneficial to the channel. Just a open suggestion, thank you!

Thank you for the video! I love the concept of your channel focusing on attack & defense. I’ve learned a lot from your videos. I hope you make another one on Kerberos relaying over SMB!

only government guys are getting SANS paid for lol

This is technically ESC8 right? Since you’re relaying authentication at the HTTP ca endpoint? I didn’t realize you could relay Kerberos at those. I’m going to have to do that in my next engagement. They had ntlm auth disabled.

Great videos. i want to test this lab please

I'm second with the halk, you can give me 5 points 🙂

Is the hulk

can this be done using a virtual machine on virtualbox

Pure content, no show off, looking for more updated stuff from you.

detected

Hi, will i become a victim of this attack if i dont have pki or ssl cert server.. or any ssl base attack ?

This guy is at his best...

Love your videos. I have 2 requests please: Please make a video about how you made the xls macro file Kindly use dark mode Thank you

Great content! Thank you! However, a detection based only on 4688 and the name is not enough :(

This channel is gold! Awesome work :)

Do you have any content in regards to tunneling ? like using cloudflared in order to perform pen testing outside of local network

Always good stuff from you..

Great work..

I will be thankful if you can crware some content about ssh tunnels..

Last year i test it and it was not detected by symantec... few other projects on the same github..

Thank you!

We can do this with a single tool too, certipy-ad

That was great, thanks! Without ADCS as an attack path, is it possible to relay between domain controllers to do a DCSync? Ie, DC1->DC2? These coercion type attacks are very interesting but also seem to be almost impossible to stop occurring if an attacker has a valid domain user account?

Awesome channel, thanks for your work, sppreciate it a lot!

Your videos are amazing. Keepem coming

great video! pure gold 💪

can you add a video showing how to get to v6.4.44-dev? I was only able to upgrade to 6.3.27-dev from the nightly installers page.

Thank you for showcasing my tool sir<3

Thanks for making this, sure it'll help a lot of people

Thanks for demo. That is why okta has fastpass endpoint solution for passwordless and secure experience.

Nice Vid thanks for sharing! Do we know how stable this is?

Hey Bripwn, could you do a more in depth review of this covering the different use cases/exploitation scenarios this works with? I've seen stuff around ESC 8/11, SCCM, DC-Syncing as you mentioned and other weird misconfigurations. Thanks for the videos!

Awesome, looking forward to more

Great video! I just wanna know if this is still vaild nowadays? cause it's really a coincidence that I'm seeing this video now. I was trying reflective load assembly last week and i was trying to use Rubeus after patching AMSI for sure but it got detected by the AV. i even tried the tool 'PowerSharpPack' and it got detected as well. is this approach flagged by now? or am i doing something wrong? Thanks for the video again

Great content as usual. Really enjoy your calm and methodical approach when explaining the concepts.

Another banger hope you have a great year looking forward to the content.

Great to see bryan back..! do pls keep on updating vids weekly..!

Great video. I have seen cloudflare used as a cnc for an obfuscated cstrike server.

Can use cloudflare as the meterpreter listener so that whenever it gets executed, the listener will be cloudflare

Do I need aws platform?

Hi! I really need some help with this concept can you DM me?

Sir, I do appreciate you and your content. I was able to use this on a recent engagement and it worked flawlessly. Sidenote for anyone who stumbles across this comment: Don't forget to check disk space and RAM size before you take a memory dump. Would hate to overfill a C drive on a production server 😂 Get-CimInstance Win32_PhysicalMemory | Measure-Object -Property Capacity -Sum | Select-Object Sum).Sum / 1GB Get-PSDrive C

Thanks for sharing. Unfortunately I’m stuck at the ./setup.sh part of the tutorial, for unknown reasons mine won’t begin the installation process instead is reposts the setup.sh list. Can you please advise. Thank you.

I really enjoyed your video, and you've just gained another subscriber! I have a quick question about the AZON EC2. Could you please explain more about how you set up all the prerequisites for the simulation test, such as how to configure the API keys? Thank you so much.

could u please provide some working phislets in 2024 and also create a video on how to create own custom phislets ,btw best content

Amazing work 👏 Please add time line ❤

Really shame on Defender, how idiot it is to flag when seeing base64 like key words. These guys doesn't know smart way of detecting threats. That's why playing safe game by arresting keys words on exe

All antivirus especially Windows Defender are super mad. Sadist... Never be happy.

What other attacks are possible, if the machine account quota is set too high?

Hi and thanks for the content I have question If template called User Allowing users to enroll and it has client authentication but the user cant specify the san or upn , is it exploitable ? And if yes , how to do that