GetDomain vs GetComputerDomain vs GetCurrentDomain Blog /October 27, 2022 /Many Active Directory enume... 2022-10-28 00:26:6 | 阅读: 38 | 收藏 | rastamouse.me forest writeline pdc odom getdomain

Protected: Evilginx, meet BITB PatreonMany thanks to my Black Hat patrons:Lény Bueno, Ty-reX, Suraj Khetani, Kovert, Dave, Joel... 2022-7-28 05:27:2 | 阅读: 38 | 收藏 | rastamouse.me tomassini banerjee patron jordan jose

Protected: OUs and GPOs and WMI Filters, Oh My! PatreonMany thanks to my Black Hat patrons:Lény Bueno, Ty-reX, Suraj Khetani, Kovert, Dave, Joel... 2022-6-8 02:23:9 | 阅读: 36 | 收藏 | rastamouse.me patrons bueno jay lény kyle

Why Tool-Restricted Exams (Sometimes) Matter Blog /April 16, 2022 /As the author of the Red T... 2022-4-17 03:8:34 | 阅读: 42 | 收藏 | rastamouse.me oscp pnpt simulation engagement stealth

SOCKS4a Proxy in C# Blog /March 28, 2022 /Some time ago, I tweeted a te... 2022-3-29 03:50:53 | 阅读: 48 | 收藏 | rastamouse.me client proxy tokensource socks4 tcpclient

Protected: Adjacency List to Manage P2P Implants PatreonMany thanks to my Black Hat patrons:Ahmed Qadeer, War4uthor, Jatta, Jose Barrientos, Eric... 2022-2-21 23:56:40 | 阅读: 32 | 收藏 | rastamouse.me war4uthor joe huskyhacks suraj cameron

Dumping LSASS with Duplicated Handles Blog /December 27, 2021 /In the previous blog post,... 2021-12-28 04:20:8 | 阅读: 59 | 收藏 | rastamouse.me writeline mimikatz 1056

Protected: Duplicating Handles in C# PatreonMany thanks to my Black Hat patrons:Lény Bueno, Ty-reX, Suraj Khetani, Henrik, SV1, Kover... 2021-11-28 05:09:56 | 阅读: 42 | 收藏 | rastamouse.me eon huskyhacks bisht ghanta likith

Protected: ExternalC2.NET PatreonMany thanks to my Black Hat patrons:memN0ps, Seemant Bisht, digitalohm, Uri Binah, Robert... 2021-11-12 23:17:56 | 阅读: 42 | 收藏 | rastamouse.me fawaz svoboda khetani henrik sv1

D/Invoke Baguette Blog /November 1, 2021 /This post will introduce... 2021-11-01 23:21:33 | 阅读: 49 | 收藏 | rastamouse.me nuget dinvoke donutcore wiki vanilla

NTLM Relaying via Cobalt Strike Blog /July 29, 2021 /NTLM relaying is a popular att... 2021-10-31 21:43:45 | 阅读: 57 | 收藏 | rastamouse.me client portbender loaded machine beacon

Backdoor .NET assemblies with… dnSpy Blog /October 4, 2021 /Placing backdoors in legitim... 2021-10-04 21:56:55 | 阅读: 40 | 收藏 | rastamouse.me 0x31 0x8b 0x89 0x4d 0x2e

Protected: Backdoor .NET assemblies with… dnSpy PatreonMany thanks to my Black Hat patrons:Robert Horn, Joe Helle, Maleick Miles, Adam Svoboda,... 2021-10-04 21:56:55 | 阅读: 51 | 收藏 | rastamouse.me patron miles yue raul dave

Protected: D/Invoke & GadgetToJScript PatreonMany thanks to my Black Hat patrons:Robert Horn, Joe Helle, Maleick Miles, Adam Svoboda,... 2021-09-06 23:24:20 | 阅读: 94 | 收藏 | rastamouse.me patrons joe fawaz kovert adam

D/Invoke & GadgetToJScript Blog /September 6, 2021 /I’m sure the subject of co... 2021-09-06 23:24:20 | 阅读: 109 | 收藏 | rastamouse.me dinvoke marshal shellcode

Protected: .NET Reflection and Disposable AppDomains PatreonMany thanks to my Black Hat patrons:yue chen, Raul Carmona, eon, Dave, mut8nt, Joel Tomas... 2021-08-17 22:58:09 | 阅读: 54 | 收藏 | rastamouse.me holbrook kovert patrons mut8nt lény

.NET Reflection and Disposable AppDomains Blog /August 17, 2021 /Disclaimer: I didn’t come u... 2021-08-17 22:58:09 | 阅读: 32 | 收藏 | rastamouse.me appdomain loaded payload rubeus

NTLM Relaying via Cobalt Strike – Rasta Mouse Blog /July 29, 2021 /NTLM relaying is a popular att... 2021-07-31 22:21:21 | 阅读: 116 | 收藏 | rastamouse.me client portbender loaded machine beacon

Exploring Process Injection OPSEC – Part 2 Blog /July 5, 2021 /In Part 1, we reviewed the v... 2021-07-05 22:50:33 | 阅读: 55 | 收藏 | rastamouse.me shellcode hmemory

Infrastructure as Code (Terraform + Ansible) Blog /June 21, 2021 /If you’ve any experience with... 2021-06-21 22:55:18 | 阅读: 76 | 收藏 | rastamouse.me covenant rasta redirector security ssh