Pikagi
RedTeamTacticsAcademy Profile Banner
RedTeamTacticsAcademy Profile
RedTeamTacticsAcademy

@RedTeamTactics

3,890
Followers
319
Following
10
Media
435
Statuses

Outsmart, Outmaneuver, Redefine the Tactics blog 👉 learn 👉

https://t.co/XJCcgI0hrl
Joined June 2023
Don't wanna be here? Send us removal request.
Pinned Tweet
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
10 months
🚀 Attention, House of Red Teamers! Ready to breathe fire into your cyber skills with some legendary training in the New Year? Here are my dragon-approved picks for your quest! 🏰 "Modern Initial Access and Evasion Tactics" by @mariuszbit - It's like mastering the secrets of
0
26
115
Last Seen Profiles
pemuas stw.pemuas.nenek .semok 69 crooot

@muahid_hafiz

Christo 🏴

@engraverchris

بنت احد المسارحه كاش

@AhdKash63163

Ryan Stuempfig

@rstumpy

ADAtainment🐙

@adatainment

صديق المتحررين

@SAlmthrryn58887

🍞

@breadkive

UCI Spine

@UCI_Spine

pier giorgio Tomatis

@TomatisPie25891

so it goes...

@redutationights

olivia duval

@Olivia14962292b

Valeria X

@Valeria30174855

Massimo

@Traiano73

Victoria Alison

@voxSion

Tante Cindy

@jandakembangstw

بنت خميس مشيط

@BMshyt74915

しおこし ゆずほ

@yuzuho_19

Middleton Mlilo

@M60659Mlilo

fabio fuscino

@fuscino

Mauro congiu coltelli artigianali Sardi

@Mauro320110

かのん

@ss00007121

Kijana Ya pipeline 🇰🇪

@PipelineJr_14

Ale Larios 

@Ale_Recre9

بنت خميس مشيط

@bntkmys04498610

منسقةسهرات خميس مشيط

@mnsqshr87163154

shuじを

@LeuNgoc53727

Dent-de-Lion

@Line_of_Five

Nity 🐟

@unitystuff

Double Ø🦇💕

@OTRCHAZ

أمجاد ✨

@_8mee

ب_ن_ت الخميس مشتهية

@eightmm55mm11

Raja Binor Stw

@BinorRaja

@Abdichakour

@Abdichakour556

Tevo Saks

@TevoSaks

コウ

@roei6m73636

zhen

@zhen07381

@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
3 months
I remember a call with the CrowdStrike team where their arrogance was on full display. They mocked other products and even us, for successfully testing a ransomware. Their taunt? “Oh, you didn’t try to disable CrowdStrike’s service anyway.” Arrogance upon arrogance. As they
149
749
9K
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
22 days
Well, well, well… Just finished a ransomware engagement and hopped on a call with the one that shall not be named (the infamous EDR company), and guess what? They said the reason they didn’t detect anything was because the ransomware was doing everything in C:\Users\Public,
59
138
2K
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
3 months
@I_AM_1970 Wow! speechless! Thanks for sharing
3
8
1K
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
22 days
@DenverHartlo @UK_Daniel_Card YES 🤣
8
0
151
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
8 months
🔥 Red Teamers, this gem never fades! 🔄 Diving into 'Blueprint for Evading EDR in 2022' is like uncovering a treasure every time. Always fresh insights! Big kudos to @_vivami for this masterpiece. Keep it in your arsenal! 💥 👇
Tweet card media
A blueprint for evading industry leading endpoint protection in 2022

Bypassing CrowdStrike and Microsoft Defender for Endpoint

vanmieghem.io
0
31
131
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
9 months
🚩House of Red Teamers🚩 How do you set up your C2? Old-school redirector, fancy CDN, or some secret sauce? I've recently been wooed by Azure App Services as my redirector. Game changer! With a stealth profile + Azure App Services, even Falcon can't ruffle our feathers with
3
36
116
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
6 months
🚩House of Red Teamers🚩 Been peppered with questions about the best gear for setting up sterling red teaming infrastructures. Well, pull up a chair, because here’s my list of absolute belters! 🎩🕵️‍♂️ 1) I’m totally bowled over by 'Red Team Ops II' by @zeropointsecltd Honestly,
1
22
112
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
3 months
Curious how many red teamers are told NOT to use keyloggers or screenshots in engagements? 🤔 Most ROEs cite privacy—but bad guys don’t ask HR for permission. Why limit our tools if we’re simulating real threats?
19
10
108
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
8 months
Definitely recommend giving this a read by @freefirex2 & @TrustedSec This line had me thinking: 'LLVM obfuscation could be our secret sauce against disk or memory-based scans.' Who's up for some code magic? .
Tweet card media
Behind the Code: Assessing Public Compile-Time Obfuscators for…
trustedsec.com
0
30
70
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
9 months
Never thought I'd say this, but I've actually found a book I can't put down! 📚 'Evading EDR' by @matterpreter is like finding the cheat codes to the cybersecurity game. 🎮 Keeping a low profile from EDRs? Turns out it's simpler than I thought – kind of like realizing those
0
6
70
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
4 months
Given the surge of queries about Azure static websites, I've just released a new blog: 'Azure Undercover: Hosting Executable Content for Covert Phishing Operations' 🚀 Learn how to utilize Azure for red team tactics. Check it out👇 "
Tweet card media
Azure Undercover: Hosting Executable Content for Covert Phishing Operations

In our previous exploration, “Azure as a Red Team Playground: Static Website Hosting Techniques,” we delved into how Azure’s static website…

posts.redteamtacticsacademy.com
0
19
67
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
8 months
🚨 Just dropped my newest blog: "Type Libraries Unleashed: Powering Macros with DLL Insights"! Uncover the secrets of macro-driven security. A must-read for House of Red Teamers 👇
Type Libraries Unleashed: Powering Macros with DLL Insights

Recently, I was revisiting Outflank’s treasure trove of insights when an article from March 2023 caught my eye — specifically, “Attacking…

posts.redteamtacticsacademy.com
0
17
68
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
7 months
Red Teamers in interviews be like: 'Tell us you got OSCP, OSEP, OSCE.' Nah, fam, ask me how I build community, share knowledge, and continuously learn—because my cybersecurity game isn't just about certs; it's about how I vibe with the matrix
1
13
64
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
10 months
🚨 New Blog Alert! 🎅 MSI Mastery in Red Teaming: Persistence & Lateral Movement" is live! It's so captivating, even Santa's considering a career switch to cyber! 🎅💻🕶️ Read it here: Hats off to @MGeeky for the idea, inspired by "MSI Shenanigans–
Tweet card media
The Stealthy Art of Persistence and Lateral Movement: Mastering MSI as Your Secret Weapon in Red…

Remember our last tech thriller, “Cyber Deception Unleashed: MSI as the Trojan Horse for .NET Evasion Mastery”? We stepped into the…

posts.redteamtacticsacademy.com
1
21
59
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
9 months
Happy Saturday, House of Red Teamers🚩Absolutely loving MSI for those sneaky engagements. It's like a Swiss Army knife for initial access, persistence, and lateral movements! 🕵️‍♂️🔧 Check out these awesome resources for the full scoop. And hey, if you're itching to practice, the
0
16
60
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
3 months
Big salute to every help desk guru, sysadmin, and IT warrior clocking in extra hours and weekends to clean up the CrowdStrike situation! 🌟 Reminds me of the tireless dedication we saw from healthcare pros during COVID. These unsung heroes of tech deserve all the praise and
1
8
59
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
1 month
Why are some execs skeptical about the ‘assumed breach’ stance, deeming it unrealistic? Could it be because it highlights too many security gaps?
9
5
50
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
6 months
Curious to hear from fellow red teamers: What’s your ultimate career goal? In the cybersecurity field, climbing the ladder can feel daunting. Sometimes, it seems like top execs, like CISOs, don’t always have deep cybersecurity knowledge yet hold prominent positions. What’s your
25
0
48
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
9 months
🚩House of Red Teamers🚩Leveraged fixmapi.exe for persistence & initial access in ops.🚪 Falcon's sharper, but I've got a trick to keep it blind. 😎 Can't share yet, using it myself! Ha! For basics on fixmapi, check the blog. Your turn to innovate! 👉
Tweet card media
Under the Radar: DLL Sideloading with fixmapi.exe for Red Teams

When it comes to DLL sideloading, most of you probably think of Microsoft Teams, right? It’s like the celebrity of the sideloading world —…

posts.redteamtacticsacademy.com
0
13
49
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
6 months
Is it just me, or is C making a comeback in the malware scene? 🤔 Recently, I’ve been coding in C for my engagements and it feels like the EDRs are just taking a bow. Guess old-school charm still has its magic!
2
3
46
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
1 month
For those who follow my journey, you know I’m all about sharing the latest and greatest—whether it’s through tips, blogs, or training. ‘Red Team Ops II’ by @zeropointsecltd is by far my favorite course, perhaps because the C2 infrastructure module inspired me to set up infra in
1
6
44
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
4 months
New Blog Alert 🚨 Stealth and Speed: Leveraging Azure Storage for Static Website Hosting in Red Team Engagements" just hit the blog. It’s packed with tactics that could even make a hacker blush! 🕵️‍♂️💻 Dive in here:
Tweet card media
Azure as a Red Team Playground: Static Website Hosting Techniques

If you’ve been following my series of blog posts, you’re well aware of my deep-seated passion for Azure. I’m always eager to share insights…

posts.redteamtacticsacademy.com
0
12
43
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
11 months
🚨 Red Teamers, ever played with Azure Storage's static website feature? It's a goldmine! 💡🖥️ Use it for HTML smuggling or just to lure victims into downloading files. Or if you're feeling a bit mischievous as a red teamer, imagine luring unsuspecting victims to a site
2
4
42
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
6 months
🔴 House of Red Team, roll call! What’s your wildest slip-up during an engagement? I’ll go first: that time I CC’d myself on a phishing email and had to ninja-unsend before the ‘victim’ noticed. Spoiler: they totally did. 😅 Your turn!
14
2
42
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
5 months
Never thought I'd be the one saying this, but I just used DCOM to trigger a macro for lateral movement in my engagement... and it worked! Feels like I've stepped into an alternate reality where up is down and DCOM is my new best friend!
1
3
38
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
11 months
🚨 New Blog Alert! 🚨 Ho ho hold the phone! My latest blog is out: "Under the Radar: DLL Sideloading with fixmapi.exe for Red Teams." It's the kind of holiday reading that even Santa might sneak in between deliveries! 🎅👓💻 Unwrap the secrets here:
Tweet card media
Under the Radar: DLL Sideloading with fixmapi.exe for Red Teams

When it comes to DLL sideloading, most of you probably think of Microsoft Teams, right? It’s like the celebrity of the sideloading world —…

posts.redteamtacticsacademy.com
0
16
38
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
10 months
🚩House of Red Teamers🚩 I'm planning my 2024 content and need your insights! Would you prefer deep dives into Cobalt Strike stealth profiles, DLL sideloading beyond Microsoft Teams, undetectable EDR persistence, initial access wizardry, or lateral movement lore? Or are Azure
6
5
38
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
4 months
Absolutely one of the best courses I've ever taken is from @zeropointsecltd , and now they've released 'BOF Development and Tradecraft'. Trust me, this is a game-changer! 🚀 Sign up and level up your skills.
@_RastaMouse
Rasta Mouse
@_RastaMouse
4 months
The one and only @Octoberfest73 has a new course: BOF Development and Tradecraft Learn how to write & unit test BOFs for CS and other C2's. Walk away with 3 operation-ready BOFs incl. a UAC bypass and some🔥 content involving @C5pider 's Stardust.
5
42
172
0
6
37
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
2 months
Red teamers, how do you manage your mental well-being with such a demanding pace? 🤔 Always on the edge of learning, even vacations feel like prep time. How do you ensure you’re not only growing professionally but also giving enough to yourself and your family? 🔄
6
2
35
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
3 months
Hats off to @nikhil_mitt ! 🎩 Three years ago, I took his Attacking and Defending Azure Lab and snagged my CARTP! 🌟 Those lab manuals? Still my secret playbook for red team ops. 📚💥 Can’t recommend this course enough to anyone in the field!
2
1
35
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
4 months
Y'all know I don't hype things up unless they're the real deal. 🚀 But let me tell you, BOF Development and Tradecraft by @zeropointsecltd & @Octoberfest73 is on another level! 🌟 Just whipped up a BOF to enumerate emails in users' inboxes, and guess what? Found the juicy stuff
1
1
34
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
9 months
Macro Mayhem Saturday 🧙‍♂️ Elevate your Red Team engagements with macros for credential capture & Azure uploads. Unlock CPL tactics, enhancing operations. Achieved through macro prowess 👇
Tweet card media
Macros Unleashed: Redefining Red Teaming with Advanced Macro Strategies-Part 2

Alright, Red Team enthusiasts, strap in because we’re about to take another deep dive into the thrilling world of macros! I realize I might…

posts.redteamtacticsacademy.com
0
8
33
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
3 months
🚩 House of Red Team 🚩 Looking to dive into the world of offensive Mac operations? 🍎💻 Hit me up with your best resources to start the journey! But please, no OffSec courses—I’m not a big fan
5
2
33
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
7 months
If you had an unlimited budget, would you prefer to assemble a league of extraordinary cyber minds to develop a custom-made C2 for your red team engagements, or would you rather purchase several commercial C2s? You've got to pick one, no 'both' allowed! 😄
16
0
33
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
2 months
I’ve been seeing this a lot in cybersecurity training courses… My favorite academy introduces something like BOF development, and suddenly, everyone’s copying the idea. Is it just part of the industry, or are we losing originality? 🤔
11
1
30
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
7 months
Who are your drama-free cyber wizards? Who mixes sage advice with joy? Who leads you to hidden gems without the drama? Let's spotlight our serene Gandalfs of tech! My top picks are @HackingLZ @HackingDave @_xpn_ @0xBoku @S1ckB0y1337 @olivier_boschko @assume_breach
7
4
30
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
8 months
Lately, the grapevine’s buzzing: Red team interviews are all about EDR bypass & malware dev. 🤖 Where’s the love for ops like lateral movement, persistence, art of macros , & Active Directory? 🕵️‍♂️ Let’s not forget the classics, folks! Are interviews missing the full picture?
3
2
28
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
10 months
🚀 December Dispatch for Red Teamers! 🚀 🔥 Blog Binge: Elevating Your Red Team Game! 💼 .NET Evasion Mastery: Discover the art of using .NET apps, signed by Microsoft, to load DLLs cunningly. It's all about leveraging .config files and the might of MSI for initial access. 🌐
0
6
29
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
8 months
🚩House of Red Teamers🚩 If you spot AzureStorageExplorer on your target, definitely make it your spawnto buddy! For some magical reason, I've been dodging those "He-Who-Must-Not-Be-Named" EDR alerts like a pro when I pull off an execute-assembly move.
1
3
29
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
9 months
🚩House of Red Teamers🚩Dive into AMSI bypass with custom DLLs, perhaps using Excel-DNA for Excel macros. 🛠️ It's a .NET and Excel synergy 🛠️ Enhance your red team arsenal with Office ribbons for code execution. These aren't just tools; they're key to your red team engagements
3
3
26
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
9 months
🚨 It's Macro Thursday🚨 Check out our latest blog, 'Macros Unleashed: Redefining Red Teaming - Part 2'. Get ready for a comical twist on advanced macro tactics that'll make your Thursday a little brighter! 👇
Tweet card media
Macros Unleashed: Redefining Red Teaming with Advanced Macro Strategies-Part 2

Alright, Red Team enthusiasts, strap in because we’re about to take another deep dive into the thrilling world of macros! I realize I might…

posts.redteamtacticsacademy.com
0
5
25
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
9 months
Sunday Read Pick 📖: Spoofing Microsoft 365 Like It’s 1995 by @424f424f & @BHinfoSecurity A classic that's aged like fine wine, offering timeless insights into phishing tactics. Perfect for a Red Team boost. 🍷👇
Tweet card media
Spoofing Microsoft 365 Like It’s 1995 - Black Hills Information Security

Steve Borosh // Why Phishing? Those of us on the offensive side of security often find ourselves in the position to test our clients’ resilience to phishing attacks. According to […]

www.blackhillsinfosec.com
0
5
25
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
7 months
Hey Red Team fam! 🕵️‍♂️💻 Time for a fun showdown: PPID Spoofing vs. Command Line Argument Spoofing! Which technique do you think has EDRs scratching their heads more? Or better yet, which one can practically walk past EDRs while they're looking the other way? 😎🛡️
4
1
25
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
9 months
🔥 Sunday Special for the House of Red Teamers! 🔥 Rise and shine, cyber warriors! Time to say goodbye to those flashy "Lambo" courses and other high-ticket, low-impact trainings. Today, we dive into the best value-packed training for mastering initial access. Let's make this
2
2
24
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
3 months
Definitely recommend this! I used the NimSyscallPackerand by @ShitSecure and it was a game-changer. Imagine what the Rust one can do! Let’s back the underdogs instead of those big bucks tools! 👇
@MSecOps
MSec Operations
@MSecOps
3 months
🔥 Introducing RustPack 🔥 . RustPack is an evasive Packer/Loader, that is capable of bypassing common AV/EDR vendors. It accepts user-provided known malicious input payloads, such as shellcode, C# assemblies or portable executables (PE). Those inputs are encrypted, and
Tweet media one
2
61
264
0
3
24
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
7 months
Curious to hear everyone’s thoughts: How many of you integrate @hackthebox_eu challenges into your interview process? Do you think adding Hack The Box tasks gives a better gauge of a candidate’s skills? 🤔
3
1
22
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
6 months
Getting questions on how to start in pentesting or red teaming? I usually step back, letting the experts speak. But here’s a tip from my personal wish list: Instead of chasing certs, I’d focus on blogging early on. Writing about even 'basic' topics like what NTLM is deepens your
2
4
23
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
8 months
🚩House of Red Teamers🚩Ready for a hot take?Each Red Team training or workshop starts with a familiar refrain: 'DO NOT DROP PE ON DISK,' echoing those 'Do Not Feed the Birds' signs. 🚫🐦 Confession: I'm the rebel feeding the ducks, dropping my PE on disk with a self-delete
6
3
22
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
1 year
🔥 Fresh off the press! Dive deep into the intriguing world of CPLs and how they dance around security. Witness the stealth of a ninja as it bypasses Falcon. Spoiler: Location, location, location! 📍🤫👣 Check it out now: #RedTeamTactics
Tweet card media
Control Panel Files (CPL): The Silent Players in Cyber Offensives!

🌙 Recently, while I was scrolling through my X (formerly Twitter) feed during one of those “just one more scroll” moments, I stumbled upon…

posts.redteamtacticsacademy.com
1
9
21
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
2 months
Has anyone else noticed that during purple team exercises, red teamers often revert to known, detectable tactics rather than deploying their latest techniques? It’s a curious pattern I’ve seen at every company I’ve worked with. What’s holding us back?
5
1
19
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
10 months
🚩House of Red Teamers🚩 Heard of 'forfiles' for DLL sideloading? This command could outsmart EDRs. 🕵️‍♂️💻 Keep it secret... Intrigued? Comment to learn more, and I might reveal all in a blog post
1
1
19
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
1 year
🍂 As autumn leaves fall, we're redirecting more than just vibes! 🍁 Ever thought of using Azure App Services as a redirector for C2? Discover the how-tos this TechTuesday. Perfect Tuesday reading while sipping on that PSL! ☕️🎢 🔗 #azure #redirector #c2
Tweet card media
Azure App Services: The Redirect Rollercoaster You Didn’t Know You Needed! 🎢

🔍 Recently, during one of my late-night web surfing adventures (you know, when you should be sleeping, but the mysteries of the internet…

posts.redteamtacticsacademy.com
0
8
17
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
8 months
🚩House of Red Teamers🚩Entropy challenge time! Beyond the usual - adding low entropy images or strings - what tactics do you deploy to make EDRs feel content, as if they've won? Drop your magic 🪄
5
2
18
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
11 months
🚩 #RedTeamAlert 🖤 #BlackFriday Edition: Running into "Invoke_3 on EntryPoint failed" on Cobalt Strike? It's likely due to: An unhandled Exception in your assembly. The target system not having the .NET 4.0+ framework your assembly requires. 🔍Check .NET versions on the
3
6
18
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
8 months
🚨New blog🚨'Power Query for Red Teamers: Unleashing the Potential of M Language and Macros.' just beginning to explore Power Query. It has a lot of potential. This is a simple introduction, but hopefully, it helps you delve deeper. 👇
Tweet card media
Power Query for Red Teamers: Unleashing the Potential of M Language and Macros

Power Query is a fascinating area I’ve been eager to explore. It’s not just a tool; it’s a solution for simplifying the way we manage data…

posts.redteamtacticsacademy.com
0
6
18
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
1 year
Hey Red Teamers, greetings from Osaka! 🇯🇵 Even on vacation, I can’t resist sharing: EXEs as initial access are the sushi of cyber ops—classic but still oh-so-effective! 🍣 Use Azure for hosting and .htaccess for that redirect magic: Redirect 302 /
0
2
17
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
8 months
Here’s a hot take: Firms think having CrowdStrike is the ultimate shield. Kind of like wearing designer gear and thinking you’re suddenly fashion-forward. 🕶️ Remember, folks, it’s not just what you have, but how you use it!
1
1
16
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
9 months
🚩 House of Red Teamers🚩Deploy a macro that sweet-talks creds from unsuspecting victims upon activation. 🕵️‍♂️ The clever part? The macro itself stealthily sends those creds to your Azure Storage. Smooth, sly, and oh-so-smart!
0
2
15
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
1 month
Just thinking out loud—no shade to recruiters, but hypothetically, wouldn’t it make more sense for hiring managers, or even a red team operator, to handle the initial screening instead of a recruiter? 🤔 Curious to hear your thoughts!
4
0
16
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
3 months
@HackingLZ Thank you! Exactly my point 😂. When I asked how they’d test their defenses (like EDR) against these techniques—keyloggers and screenshots—they said, ‘Let’s hope we don’t come to the day attackers breach and use those.’ Hope isn’t a strategy, folks!
4
1
15
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
5 months
@NinjaParanoid Well said! Additionally, the management or leadership often lacks the cybersecurity education and pretends they know everything. When you brief them on an engagement, they look so confused! Recently, a famous company (hint hint, acquired by Google) hired someone in charge of
1
0
14
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
8 months
🚩House of Red Teamers🚩 Quick poll: How often do you encounter ASR in your engagements? Does it mesh well with Windows Defender Application Control, or are they at odds? 🤔 Also, is AppLocker officially out and replaced by these two? Thoughts?
3
2
14
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
9 months
Friday's blend: coffee with a hint of whiskey, as intriguing as red team engagements. In my @zeropointsecltd mug, it's beyond exclusive. Only thing missing? @_RastaMouse 's autograph. Red team, auction soon? ☕️🔐🎯
Tweet media one
1
0
11
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
1 year
🚀🔍 'Reality Checks: Operation Summary' - Greetings, #RedTeam Heroes! We've had an enlightening week filled with learning, innovation, and #CyberSec creativity. Let's recap: 1️⃣ We began with 'Macro Drop It Like It's Hot', moving from direct code execution to stealthy
2
3
13
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
5 months
Ever noticed how being overqualified can sometimes backfire in job interviews? To my fellow red teamers, do you think there's a point where our deep knowledge makes us seem more like a threat than an asset to hiring managers? Let's discuss this paradox. 🤔
6
1
13
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
4 months
@NinjaParanoid I just don’t get the hype about Crowdstrike being the ultimate, unbeatable EDR. Maybe their Super Bowl ads and PR stunts are actually magical spells to ward off hackers. 🎩✨ Protected for life with a little halftime show hype!
1
0
11
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
10 months
Happy New Year, folks! 🎉 Did your resolutions include leveling up your red team skills? No? Well, it's not too late to add one! 🕵️‍♂️💻 Check out my latest blog 'Macros Unleashed: Redefining Red Teaming with Advanced Macro Strategies - Part 1' for some macro-magic! Unwrap the
0
3
12
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
4 months
🚨 Red Team Briefing: Exec: “So, you evaded the million-dollar EDR?” Me: “Nope! The EDR just wasn’t looking for the kind of genius stuff I run. So technically, I didn’t evade anything. Let’s not throw around ‘bypass’ like it’s going out of style. Use it correctly, please!
1
2
12
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
7 months
Is it just me, or is tricking EDRs turning into a walk in the park? 😂 Feels like we’re dealing with those mythical monsters our parents used to scare us with – turns out they might never have existed!
3
0
12
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
11 months
🚨 Red Teamers! Found out your target is an AWS or GSuite aficionado? Perfect! Here's how to bypass MOTW with finesse. 🕵️‍♂️ 1️⃣ Plant your payload in a Google Cloud Bucket or AWS S3. 2️⃣ Grab the URL: AWS:⛈️ https://[bucket_name].s3.amazonaws.com/[object_name]/evil.exe GCP: ⛅️
1
4
12
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
7 months
Hats off to @TrustedSec as always. Every red team job posting should have this vibe! Why stick to the ancient scripts? While others demand mastery over the lost languages like MATLAB, configuring SOCs in your sleep, and being a wizard in AI/ML LLMs!
@curi0usJack
Jason Lang
@curi0usJack
7 months
Interested in red team operations using almost all internal tooling against some of the hardest companies in the world? Love coding on the fly? TrustedSec Targeted Operations may be for you. Shoot me a DM.
5
44
177
1
0
11
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
9 months
Red Team Diaries, EDR vs. AMSI 🕵️‍♂️: In the cyber arena, sometimes EDR flexes its muscles, telling AMSI to take a back seat. It's like watching the savvy EDR assert, 'I've got this!' For red teamers, these moments are pure gold, where the EDR's confidence opens new doors for
0
0
9
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
8 months
How many agree that companies aiming for a successful in-house red team and pentest program need a CISO rooted in cybersecurity? 🛡️ It's as crucial as knowing how to brew before running a coffee shop. A deep Thoughts?
3
0
11
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
6 months
Never thought I’d see the day during one of my engagements (no names, but it's a well-known EDR) where Cobalt Strike’s BlockDLLs would come through clutch! 🤯 Just goes to show, always expect the unexpected in red team ops
0
1
11
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
9 months
🎉 Happy Friday, folks! We've surfed the Azure wave all week 🌊, but let's cap it off with a twist! Did you know Azure Storage has a 'Static Website' option? 😏 As Red Teamers, think of the possibilities - website cloning, HTML smuggling... the list goes on! 🕵️‍♂️💻
0
1
11
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
11 months
🌐🎮 Red Team Gamers! It's time to level up your #CobaltStrike profile! 🕹️🚀 🎩 Mission: Invent a ninja-style pipe name for your Cobalt Strike's SMB Beacon. Think stealth, think sly! 🥷💻 🤔 Doubtful it'll work? Run this PowerShell wizardry and behold the stealth-o-meter: PS:
0
4
11
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
7 months
Hey red teamers! 🚀 Did you catch the latest? A top-secret discussion via WebEx got leaked, and it's a hot topic! Was it an individual mistake or a WebEx weak spot? What's your take on the cyber slip-up?
1
1
10
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
11 months
🚨 New Blog Alert! 🚨 Braving the Canadian snow this frosty Friday morning! ❄️☃️ My keyboard's almost an ice block, but that's not cooling down my excitement to share my newest blog. 🎩 Hats off to @MrUn1k0d3r and his .NetConfigLoader repo for igniting the idea. Dive
0
4
10
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
5 months
🎉 Really vibing with COM in my recent red team engagements—feels just like when I got reunited with C again! Who knew you could find true love twice? 😄💻
0
0
10
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
9 months
Red Team Diaries, Email Banner Bypass🕵️‍♂️: Once upon a time, my phishing attempts were like messages in a bottle lost at sea—unread and unclicked. But then, a twist in the tale: I bypassed the external email banner. Suddenly, those same messages found their way to shore,
0
1
9
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
9 months
Excited to share the 'Windows Local Privilege Escalation Cookbook' by a brilliant Greek mind! 🇬🇷📚 It's heartening to see such valuable contributions to our community. Definitely exploring it for my next blog posts. Kudos to the brains behind it! 💡👏
@nickvourd
NCV
@nickvourd
10 months
For the last day of the year… Here is my “semi final” upcoming project:
5
34
128
1
5
10
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
8 months
Keen to dive into AI red teaming. Any pointers on where to start?
3
0
10
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
4 months
🚩 House of Red Team🚩, there's a noticeable emphasis on patching EtwEventWrite, but silence around NtTraceEvent. What’s your take on this contrast?
2
1
10
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
7 months
Oops, did I just drop a PE on the disk again? My bad! Must be all the excitement from outsmarting security… again. It’s like an addictive puzzle, but every piece you fit makes the blue team frown.
0
1
10
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
1 year
Evasion techniques in cybersecurity? 🕵️‍♂️ Configuration bypass is a classic! EDRs are like our cyber guard dogs 🐶. But what if the dog's chasing its own tail? 🌀 When tools to detect threats are there, but they're off-tune... like allowing payloads from shared drives. It's like
1
2
9
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
3 months
After the latest breach, I bet AT&T’s about to drop a hiring spree for cybersecurity roles! Watch them add AI red teamers to the mix — because why not? Apparently, AI red team is the new trend!
0
0
9
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
11 months
🌞 Happy Sunday, #RedTeamers ! Starting the day with some #CobaltStrike tips on Command-Line Spoofing: 1️⃣ Benefits with Detection: Outsmart detection systems by masking true command-line arguments. A stealthy approach for evading security monitoring! 🕵️‍♂️🚀 2️⃣ How It's Done in
0
2
9
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
9 months
Getting questions on Azure courses for red team/offensive roles? I aced Azure by simply playing with it (yep, free access perks 😎). On to 'BREACHING AZURE & AWS' by @Cloud_Breach next. Drop your top cloud tips and fav courses below! 🌩️🚀
0
2
9
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
21 days
@S0ufi4n3 OMG …. I am dead 🤣🤣🤣🤣
0
0
9
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
6 months
🚩 House of Red Teamers🚩 'Bypass' is overused—my nanny jokes about bypassing Windows Defender on her ancient Toshiba! We need a fresher term so she can't claim she's a better red teamer than me on that relic! 😂 Thoughts?
4
0
9
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
1 year
Can't help but chuckle as I recall my partner in cyber crime, @olivier_boschko , who aced an interview with @hackthebox_eu ! 🙌 He's transitioned from a college dropout to a senior red team operator, mastering the art of lateral movement. We met grinding through HTB Pro labs,
1
3
9
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
1 year
@zeropointsecltd it's tough out there with the current economy and sky-high interest rates. Many are struggling to make ends meet, let alone invest in additional education and training. It's refreshing to see @zeropointsecltd offering a flexible and affordable path to security training, with
0
0
7
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
7 months
Hey House of Red Team🚩, just out of curiosity, is anyone still rocking HTAs for initial access, or have we all moved to a realm beyond the old-school tricks? 😂 Any tales of triumph or is it officially ROP (Resting on Protocol)? Share your stories!
0
1
8
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
11 months
🌟 SPECIAL GIVEAWAY ANNOUNCEMENT! 🌟 @MrUn1k0d3r course was a turning point in my offensive coding journey, empowering me to conduct more successful red team engagements. Now, it's time for me to give back. If you're aiming to become a master of offensive coding tactics, this is
1
4
8
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
10 months
Ready for 2024? Don't leave MSI out of your red teaming plans! It's the turbo boost your engagements need. 🚀 Your New Year's resolution: Become an MSI Wizard! 🧙‍♂️✨ 👉 "MSI Shenanigans: Offensive Capabilities" by @mariuszbit 👉 "Cyber Deception Unleashed: MSI, the .NET Trojan
0
2
8
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
10 months
Hey House of 🚩Red Teamers🚩 Aside from the usual tech deep-dives and red teaming tactics, let's talk gratitude as the year ends. Who's made your cyber world better? Friends, communities, or maybe those insightful blog posts from @TrustedSec ? Big shoutout to @hackthebox_eu , a
1
3
8
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
10 months
🚩 House of Red Teamers, take note!🚩 Azure CDN isn't just for domain fronting 🚫 – it's a master key for discreet payload delivery! 🚀 This Monday, go beyond the usual and link with Azure Storage for that undercover edge. Your covert channel for sophisticated ops! 🕵️‍♂️
0
1
8
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
9 months
🚨 Sunday Training Choice Day at the House of Red Teamers! Just to clear the air – no, I haven’t been bribed with pizza or swag for these recommendations! 😂 Just dropping some genuinely awesome, value-packed knowledge bombs for my fellow red teamers out there! 👉 This Sunday,
0
0
8
@RedTeamTactics
RedTeamTacticsAcademy
@RedTeamTactics
7 months
House of Red Team! 🚩 How many of you have dealt with CrowdStrike Identity Protection in your operations? Share your toughest challenges. Also, thoughts on its impact on system performance vs. user experience?
0
3
8