Security Tutorials

Token Impersonation Attack

Posted on 22nd September 202022nd September 2020

Token Impersonation is a way of impersonating a user access token, allowing you to effectively take over the user without even needing to know the user’s password. Subsequently, attackers are currently using this in the wild as a way to escalate privileges and move laterally across the network. However, without proper mitigation in place, it […]

Illustrated Tutorial for Installing Microsoft LAPS

Posted on 20th June 202020th June 2020

Basic Enumeration on a Windows PC

Posted on 31st May 202031st May 2020

Crack the Hash Challenge

Posted on 17th May 202017th May 2020

Creating a Payload with Msfvenom

Posted on 27th February 202027th February 2020

Banner Based Vulnerabilities For Microsoft Exchange smtpd

Posted on 3rd December 201927th February 2020

This Banner based Vulnerability is a common Exchange Server misconfiguration I see on PCI Compliance scans all the time. Try googling for this error and you just get a few forum pages telling you how to fix the issue; However, never explaining why this vulnerability happens in the first place. Also, check out my HTTP […]

Token Impersonation Attack

Illustrated Tutorial for Installing Microsoft LAPS

Basic Enumeration on a Windows PC

Crack the Hash Challenge

Creating a Payload with Msfvenom

Banner Based Vulnerabilities For Microsoft Exchange smtpd

HTTP Header Internal IP Disclosure

Password Audit: Extracting hashes from Ntds.dit

Top 10 Security YouTube Channels

Brute Forcing Web Logins with DVWA