Update: Dumping Entra Connect Sync Credentials 微软更改了Entra Connect Sync代理的身份验证机制，从基于用户的认证改为基于应用程序注册和证书认证。此更改减少了明文密码泄露的风险，但攻击者仍可通过获取证书私钥维持访问。新机制允许攻击者利用现有权限添加新证书，扩大了潜在攻击面。... 2025-6-9 17:2:18 | 阅读: 14 | 收藏 | Posts By SpecterOps Team Members - Medium - posts.specterops.io entra connector aad assertion attacker

Getting the Most Value Out of the OSCP: After the Exam 文章探讨了如何在OSCP考试后最大化其价值，建议考生通过反思考试表现、连接行业专业人士和学生网络，并规划下一步职业发展来提升技能和职业前景。... 2025-6-2 16:23:9 | 阅读: 13 | 收藏 | Posts By SpecterOps Team Members - Medium - posts.specterops.io oscp security network offsec

Getting the Most Value Out of the OSCP: The Exam 2025-4-22 13:56:43 | 阅读: 5 | 收藏 | Posts By SpecterOps Team Members - Medium - posts.specterops.io

The Renaissance of NTLM Relay Attacks: Everything You Need to Know 2025-4-8 20:54:20 | 阅读: 3 | 收藏 | Posts By SpecterOps Team Members - Medium - posts.specterops.io

The SQL Server Crypto Detour 2025-4-8 15:38:21 | 阅读: 10 | 收藏 | Posts By SpecterOps Team Members - Medium - posts.specterops.io

An Operator’s Guide to Device-Joined Hosts and the PRT Cookie 2025-4-7 16:17:52 | 阅读: 2 | 收藏 | Posts By SpecterOps Team Members - Medium - posts.specterops.io

Do You Own Your Permissions, or Do Your Permissions Own You? 2025-3-26 13:20:46 | 阅读: 43 | 收藏 | Posts By SpecterOps Team Members - Medium - posts.specterops.io

Getting the Most Value Out of the OSCP: The PEN-200 Labs 2025-3-25 13:32:2 | 阅读: 6 | 收藏 | Posts By SpecterOps Team Members - Medium - posts.specterops.io

Getting Started with BHE — Part 2 2025-3-19 13:31:55 | 阅读: 1 | 收藏 | Posts By SpecterOps Team Members - Medium - posts.specterops.io

Getting Started with BHE — Part 1 2025-3-12 14:46:15 | 阅读: 23 | 收藏 | Posts By SpecterOps Team Members - Medium - posts.specterops.io

Decrypting the Forest From the Trees 2025-3-6 16:46:10 | 阅读: 16 | 收藏 | Posts By SpecterOps Team Members - Medium - posts.specterops.io

Fueling the Fight Against Identity Attacks 2025-3-5 17:4:37 | 阅读: 18 | 收藏 | Posts By SpecterOps Team Members - Medium - posts.specterops.io

Getting the Most Value Out of the OSCP: The PEN-200 Course 2025-3-4 15:5:20 | 阅读: 1 | 收藏 | Posts By SpecterOps Team Members - Medium - posts.specterops.io

Don’t Touch That Object! Finding SACL Tripwires During Red Team Ops 2025-2-20 14:33:48 | 阅读: 11 | 收藏 | Posts By SpecterOps Team Members - Medium - posts.specterops.io

Getting the Most Value out of the OSCP: Pre-Course Prep 2025-2-12 15:18:23 | 阅读: 9 | 收藏 | Posts By SpecterOps Team Members - Medium - posts.specterops.io

Enhancements for BloodHound v7.0 Provide Fresh User Experience and Attack Path Risk Optimizations 2025-2-11 17:31:49 | 阅读: 14 | 收藏 | Posts By SpecterOps Team Members - Medium - posts.specterops.io

Forging a Better Operator Quality of Life 2025-2-5 15:5:14 | 阅读: 25 | 收藏 | Posts By SpecterOps Team Members - Medium - posts.specterops.io

Further Adventures With CMPivot — Client Coercion 2025-2-3 15:57:43 | 阅读: 17 | 收藏 | Posts By SpecterOps Team Members - Medium - posts.specterops.io

SlackPirate Set Sails Again! Or: How to Send the Entire “Bee Movie” Script to Your Friends in Slack 2025-1-31 15:55:31 | 阅读: 12 | 收藏 | Posts By SpecterOps Team Members - Medium - posts.specterops.io

Insurance companies can reduce risk with Attack Path Management 2025-1-23 20:36:51 | 阅读: 33 | 收藏 | Posts By SpecterOps Team Members - Medium - posts.specterops.io