Credential Guard was supposed to end credential dumping. It didn't. @bytewreck just dropped a new blog post detailing techniques for extracting credentials on fully patched Windows 11 & Server 2025 with modern protections enabled. Read for more ⤵️

Check out my new blog post diving deeper into BroCI.

Check out my new blog on nested app authentication and brokered authentication.

Ready to level up your offensive security career? 📈 Join our Consulting Services team as a Senior Offensive Security Consultant doing what you love: red teaming, penetration testing, capability assessments, and research. Learn more & apply today: https://t.co/IKqBYtLBMz

What can you expect to learn in our Azure Security Fundamentals training at #SOCON2025? Course architect @Icemoonhsv shares that students will dive into: ➡️ Azure Resource Manager ➡️ Common security misconfigurations ➡️ Entra ID authentication Register: https://t.co/UOOmhWc2Zi

Join our Azure Security Fundamentals course at #SOCON2025! Learn to secure Azure environments & spot misconfigs commonly exploited by attackers. 🐦 Early bird deadline = Dec 1 🎟️ In-person attendees receive a free conference pass. Register today 👉 https://t.co/UOOmhWc2Zi

I wrote a blog post about some of the intangible benefits of working as a red team operator and adversary simulation consultant at SpecterOps. It's pretty awesome here. And we're hiring! https://t.co/d8ShLewzJd

Dig into Active Directory with us at #BHUSA! Join @Icemoonhsv & @_wald0 for our AD Security Fundamentals training and learn the key components of AD and get hands-on practice analyzing live AD environments. Aug. 3-4 ▶️ https://t.co/DU3A5NtW2S Aug. 5-6 ▶️ https://t.co/77Y56IylrE

New blog on some considerations when using CAPs and PIM in an Entra ID tenant together. I also cover potential complications for defensive posture, disaster recovery, and offensive engagements.

Published part 2 of Manual LDAP Querying. This blog covers additional topics like user account control, password attributes, domain trusts, and more.

In #BHUSA training “Active Directory Security Fundamentals,” get hands-on with Active Directory (AD), enabling participants to gather answers directly when questions surrounding their organization's AD architecture arise in the future. Reg now >> https://t.co/IXsfiG0cvc

I am very excited to see the Azure Security Fundamentals course to come out at SO-CON this year!

We're thrilled to announce BloodHound Community Edition (CE) -- the next evolution of #BloodHound. Scheduled for release on 8/8, BloodHound CE has many new features & enhancements, making it easier for users to deploy, manage, and utilize. Learn more: https://t.co/aLMuHQvwfB

I am extremely excited for the AD Security Fundamentals course. I have put in a lot of work over the last few months to get this course ready. Can't wait to deliver it at Black Hat this year.

I've long been interested in how EDRs work under the hood and how we can apply a more evidence-based approach to evasion. I'm happy to announce that I've written a book covering these topics with @nostarch which is now available for preorder 🎉 https://t.co/tHSWnVzuMX

@SpecterOps will be at NorthSec in full force. @zyn3rgy and @Icemoonhsv will be teaching our Red Team Operations course and @jsecurity101 and I will be teaching our new Malware Morphology for Detection Engineers workshop! We'd love to meet up and chat!

#specterops Adversary Tactics: Red Team Operations day 1 of 4 with @harmj0y @enigma0x3 @Ne0nd0g @_Mayyhem @Icemoonhsv @0xthirteen @Nc3pt0r @0xdab0 was a success!

Come join @harmj0y @Nc3pt0r @enigma0x3 @0xthirteen @Ne0nd0g @_Mayyhem @Icemoonhsv and myself in our AT:RTO course at #BHUSA !

Looking forward to being an instructor on our AT:RTO class with a great team of other instructors at #BHUSA this year.

We're excited to announce that SO-CON will be back October 24-28, 2022 in Reston, VA! We'll be offering all of our trainings, and will end the week with a series of new training workshops developed by our team of Specters. Click here for more info: https://t.co/OoBYRhi4pT