Brian Carrier and Chris Ray have found a way how to run PsExec and not reveal admin password hash. Check this blog post to learn how to do it.
-
Incident Forensics Lifecycle
Recently I’m becoming more and more interested in cyber threat intelligence. I even … -
Shining a light on Spotlight: Leveraging Apple’s desktop search utility to recover deleted file metadata on macOS
Spotlight is a proprietary desktop search technology released by Apple in 2004 for its Mac… -
Load More Related Articles
-
Detecting PowerShell Empire Shenanigans with Sysinternals
In this post Ben Bornholm writes about how to detect PowerShell Empire using the tools fro… -
Analyzing the Windows LNK File Attack Method
An interesting post by D3xt3r’s Malware Laboratory describing another example of usi… -
Cobalt Strike Remote Threads Detection
Olaf Hartong has writted a blog post in which he shows how to use âCreate Remote Threadâ e…
Load More In Tips & Tricks
