top of page
Blog
Calling One RESTful API at a time using BARK Tool (Update to Red Labs Platform)
Hello Readers, Today, we are going to discuss the launch of new category of labs on our very own community favorite Red Labs platform, with a focus on using the BARK tool. So , without further ado, let’s get started with it. The first question we must address is this: What exactly is BARK? BARK stands for BloodHound Attack Research Kit . It is authored by Andy Robbins , from SpecterOps, who is also one of the creators of the famous BloodHound Tool for Active Directory pen t
Hitesh Duseja
Dec 29, 20253 min read
Red Labs Platform - The Azure Red Teaming Playground
Updates to our Azure Red Team Platform
Nikhil Mittal
Dec 29, 20252 min read
Long Live Pass-The-Cert: Reviving the Classical Rendition of Lateral Movement across Entra ID joined Devices
Hello Readers, Today, we will explore one attack path which had fizzled out in the past few years. We are talking about Pass-The-Cert Attack, which was first brought to light through the work of Security Researcher Mor Rubin in 2020. What was the original Pass-The-Cert Attack? The flow for the original Pass-The-Cert attack is as follows: An adversary would dump the PRT (Base64 encoded Primary Refresh Token), session key (clear key protected by DPAPI) using mimikatz for an
Hitesh Duseja
Nov 25, 20255 min read
bottom of page