I use iTerm2 exclusively as my terminal of choice on the Mac platform. In fact it's in the top 10 reasons why it would be incredibly challenging for me to ever leave the Apple platform. I've added a few customized triggers to help me as a penetration tester. These are all regular expressions which iTerm2 …
Automated Empire Infrastructure
A few weeks ago Carrie Roberts submitted a "resource files" PR to Empire Dev which has since been merged into master, or version 2.3. These resource files work much the same way as they do in Metasploit, where you can define actions on startup and for initial agent check-ins. This PR came around the same …
Empire without PowerShell.exe
Problem: The client has blocked Powershell.exe using AppLocker and I don't have the dough for Cobalt Strike. I want to get an Empire payload on a workstation via a phishing campaign and I need payloads ready once I have a foothold. Nearly all of the launcher methods for Empire rely on the ability to use …
Purple Team: Your First Pentest Results
I wrote another guest post for Critical Informatics on the top 10 recommendations we end up giving new clients. These are common vulnerabilities that are not obvious for non-security focused teams. If you've never had a pentest, check this out before your engagement for some "low hanging fruit" to remediate.