You think the defensive GenAI companies starting red teams and assessment services would recommend each other’s products? Unlikely.

Get an unbiased third-party assessment from a company like NetSPI or SpecterOps 🇺🇦.

The first big update is live inside Crucible. New dashboard, never before seen challenges, progress tracking, walkthroughs…

Go check it out!

crucible.dreadnode.io

Some big changes this time around, props to the team for their hard work.

Obviously, a big thanks to the hundreds of beta testers that signed up - keep the feedback coming.

So much cool stuff in this release and on the roadmap.

Evan did really awesome work reversing and documenting Windows authentication packages! His tool, LSA Whisperer, allows you to interact with many of them and provides some new techniques for credential extraction, usage, and enumeration. Definitely check it out!

This is some very, very cool research by Evan, definitely check it out!!

I just published a blog and tool for the LSA Whisperer work that was presented at the SpecterOps Conference (SOCON) back in March.

If you are interested in getting credentials from LSASS without accessing its memory, check it out!
medium.com/specter-ops-po…

Jeremy Howard github.com/dreadnode/rigg…

🚨 I'm super excited to announce the project I've been pouring all of my free time into this past month.

The Kubenomicon: An open source offensive security focused threat matrix for kubernetes with an emphasis on walking through how to exploit each attack. Get more info below!

Check out #BHASIA Arsenal schedule! Start planning out your conference experience today>> bit.ly/3vG8NAh

Join Sean Metcalf at #BSidesCharm 2024 as he presents 'The Problem with Identity Security & How to Fix It' where explores the issues with Identity security - specifically AD & Azure AD - leading to full compromise, recent breaches (MGM), & mitigations.

bsidescharm.org/registration/

While Microsoft's User Account Control is not defined as a security boundary, bypassing UAC is still something attackers frequently do. Check out this blog post from Matt Nelson detailing one method for bypassing UAC using App Paths. ghst.ly/43U8XQY

👋 Hello, Nashville! If you’re at #WiCyS2024 come by Booth 228 to chat with a few Specters and learn more about us.

I wrote a script to identify every TAKEOVER and ELEVATE attack in Misconfiguration Manager that can be run with Read-only Analyst privileges or higher in SCCM. Please share with your IT admins, defenders, clients, assessors, and friends in infosec!
posts.specterops.io/rooting-out-ri…

THE KUBERNETES DOESN'T STOP
I'm learning the 'k3s' way of configuring kubernetes and created a Helm repo for Ghidra server. I learned a ton and if anyone finds it useful, you're free to use it:
github.com/t94j0/ghidra-k…

Stop by booth 228! Looking forward to meeting you all this week.

Awesome to see the “final” release 🤣 of this research with Megan. But will this post be the last?! 🤪

Please give Megan a follow! She is a fantastic purple teamer and deserves all the credit for this post and the research behind it 🦾💜

The average of this is vulnerability scanning. All technical testing of LLMs can’t just simply be labeled as “red teaming”.

We are in peak fake spring right now. #Seattle

'Mom, why can't we have some deep learning?'
'You have plenty of regression models at home'
'Eww, its a linear regression - shouldn't we have something fresh?'

Children, behold a regression for real-world clinical data that I'm helping a physician with.

Octoberfest7 This was always the end state for OST. Once defense/CTI was able to feed things into EDR/detections faster, people who do this daily would pull back on publishing. It's more likely you'll see generic research or basic PoCs.

Obviously, up and coming people trying to make a name…