offensive
The Hidden Risk: Compromising Notepad Cowriter’s Bearer Tokens
Introduction In 2023, Microsoft launched Copilot for Office 365. Recently, they expanded its functionality to include integration with Notepad in 2025, allowing…
offensive
Navigating Embedded Payload Extraction from RDP Files – Defence evasion
Introduction This blog post will explore how to embed malicious payload into the RDP configuration file. By leveraging the innate properties of…
offensive
Abuse Cloudflare Zerotrust for C2 channels
What is Zero Trust Security? Zero Trust security is an IT security model that requires strict identity verification for every person and device trying…
offensive
Follina – CVE-2022-30190 RTF
Intro a recent code execution vulnerability targeting office365 using unpatched vulnerability which allows client-side command execution via ms-msdt protocol. the first appearance…
offensive
Mortar Loader v2
https://github.com/0xsp-SRD/mortar Words to say I released the Mortar loader a couple of months ago, and it was good results in defeating and…
offensive
Active Directory (Attack & Defense )
This is the 2026 revision of Active Directory (Attack & Defense), first published in April 2022. The content might have under frequent changes.…
offensive
Hunting Windows Credentials (CredUIPromptForWindowsCredentials)
intro I recently started to do Live streaming on twitch and youtube to cover some techniques and do some live coding sessions.…
offensive
bypass restricted command prompt for none-privileged users
intro The Windows Command Prompt (sometimes called the DOS prompt) is a tool that allows administrators to invoke system-wide commands to make…
offensive
Web attacks payloads collections
a collection of commonly used payloads needed for web application testing (fuzzing), the payloads have been collected from different resources and will…
offensive
Bypass Symantec Email Security.cloud
During attack Simulation, you may face Symantec Email Security Cloud (Message Lab ) while conducting a phishing campaign. Message Lab stops known…