BACKGROUND

So, I recently cleared the Certified Red Team Professional (CRTP) examination. I have been part of multiple Red Teaming engagements prior to taking this certification exam, and my role in the Red Team was generally limited to getting the initial foothold into the corporate network from the Internet (or other arenas 😋) since I did not have adequate knowledge about Active Directory (AD) security. Therefore, I decided to learn about security in AD environments and dug through resources for the same. This is when I stumbled upon Pentester Academy’s Red Team Labs (Attacking and Defending Active Directory Lab) which comes…


Git is one of the most developer-preferred version control systems for tracking changes in source code during software development. Recently, an exploit revolving around an extension of Git called Git-LFS (Git Large File Storage) was discovered by a Security Researcher, Dawid Golunski. Git on Windows includes the Git-LFS extension by default. Git LFS replaces large files such as audio samples, videos, datasets, and graphics with text pointers inside Git, while storing the file contents on a remote server like GitHub.com or GitHub Enterprise. …

ThatOneSecGuy

Red Teamer | Constantly attacking infrastructure, systems, applications (and humans) to make the Internet a safe and secure place for everyone (and everything).

Get the Medium app

A button that says 'Download on the App Store', and if clicked it will lead you to the iOS App store
A button that says 'Get it on, Google Play', and if clicked it will lead you to the Google Play store