Introduction Reasons why you’d want to establish persistence as QUICKY AS POSSIBLE including: 1. Re-exploitation isn't always possible: Some unstable exploits might kill the vulne...

Intro It is essential to be familiar with the environment where you have initial access to a compromised machine during a red team engagement. Therefore, performing recon and enumeration is a...

Introduction This room focuses on post-exploitation enumeration. In other words, we assume that we have successfully gained some form of access to a system. Moreover, we may have carried ...

Introduction Cybercriminals use various internet attacks against companies for different purposes. In most cases, many of these attacks end in data breaches, where threat actors steal sensiti...

Intro Weaponization: Second stage of the Cyber Kill Chain model. The main purpose of this phase is to acquire initial access on the target machine through the use of malicious weapons t...

Intro Threat Intelligence or Cyber Threat Intelligence(CTI) is the information, or TTPs attributed to an adversary, commonly used by defenders to aid in detection measures. The red cell can l...

Intro Operations Security (OPSEC) is a term coined by the US military. In the field of cybersec, let’s start with the definition provided by NIST: Systematic and proven process by...

Intro The key to a successful engagement is well-coordinated planning and communication through all parties involved. Engagements: Tabletop exercises Adversary emulation Physical asses...

Intro to Phishing Attacks Before you learn what phishing is, you’ll need to understand the term Social Engineering. Social Engineering : psychological manipulation of people into performing o...

Intro Command and Control (C2) Frameworks are an essential part of both Red Teamers and Advanced Adversaries playbooks. They make it both easy to manage compromised devices during engagement and...