BloodHound v8.0 is here! 🎉. This update introduces BloodHound OpenGraph, revolutionizing Identity Attack Path Management by exposing attack paths throughout your entire tech stack, not just AD/Entra ID. Read more from @JustinKohler10: 🧵: 1/7

Check out this blog post from @Jonas_B_K and learn more about one of the more prevalent AD CS attack paths. 👉 🧵: 4/4.

Learn more about vulnerabilities in AD CS - check out @harmj0y's blog post 👉 🧵: 3/4.

To get a better idea of which certificate templates are increasing risk, make sure to follow these all the way down to the PKI configuration in your environment using Composition view in Explore. 🧵: 2/4.

RT @PardonMyTake: Tuesday night max woke Big Cat up with a flashlight at 2am because he thought we were going to get sued. @forthepeople ht….

Happy #BloodHoundBasics day from @sec_distilled!. Unsure what Active Directory Certificate Services (AD CS) Escalation (ESC) Attack Paths are? These depend heavily on certificate template configurations that may lead to the abuse of any principal in your forest. 🧵: 1/4

Trying to fly under EDR's radar?. @_logangoins explains how to use HTTP-to-LDAP relay attacks to execute tooling completely off-host through the C2 payload context. Perfect for when you need LDAP access but want to avoid being caught stealing creds.

Mythic's browser scripting lets operators customize data analysis beyond raw output. Alexander DeMine shows how smart agent design + structured responses transform the operator experience. ⬇️

New blog post just dropped!. West Shepherd breaks down extending the Mythic Poseidon agent for ARM64 Dylib injection on Apple Silicon. Details include:. ✅ Shellcode construction.✅ Memory allocation .✅ Runtime patching.✅ Thread creation. Read more ⤵️

Are you leveraging Mythic's BrowserScript? @its_a_feature_ shows how it transforms plain outputs into interactive tables, buttons, & links, dramatically improving your operational efficiency!. 👀:

Always curious and full of energy, Beagles turn every walk into an adventure 🐾🎉.

Join our webinar, happening next Thursday and get a full break down of the report from authors @jaredcatkinson, @AndrewChiles, and @elad_shamir. Register at

The industry has mastered precision detection; atomic alerts, minimal false positives, clean queries. But we're missing the bigger picture. Our State of Attack Path Management report explores shifting from isolated alerts to contextual understanding. ➡️

RT @helpnetsecurity: LudusHound: Open-source tool brings BloodHound data to life - - @SpecterOps @GitHub #GitHub #O….

WATCH: @JustinKohler10 & @_wald0 recently joined @_JohnHammond to talk all about BloodHound v8.0 and OpenGraph. Learn how with these updates you can now map attack paths across your entire tech stack. 👉

Hosts running the WebClient service are prime targets for NTLM relay attacks, and it may be possible to start the service remotely as a low-privileged user. @0xthirteen breaks down the service startup mechanics, plus the protocols and technologies.

You can now map attack paths throughout your entire tech stack with BloodHound OpenGraph. @JustinKohler10, @jaredcatkinson, @_wald0 & @StephenHinck chatted about this & other new features in BloodHound v8.0 during our recent webinar. 👀 Watch on demand:

Please click onto the image below to hear oldies and classic rock.

Don't miss our BloodHound demo webinar, happening TOMORROW! During this interactive demo, Jonathan Parfait will cover: . ✅ Why Attack Path Management matters .✅ BloodHound's identification approach .✅ Prioritizing mitigation efforts. Save your spot!

BloodHound OpenGraph allows you to map attack paths across ANY platform. @jaredcatkinson spoke with @DarkReading during #BHUSA about how you can now connect the dots between Active Directory, GitHub repositories, and other sensitive assets. 👀:

New #BloodHoundBasics post c/o @ScoubiMtl!. BloodHound v8 introduced Table View. It is the default view when the query returns only nodes. But did you know ANY query result can be viewed as table & exported?. Simply click on 'Layout' at the bottom of the screen & select 'Table'!

Manual recon commands eating up your time? 🕐. @atomiczsec breaks down how Mythic Eventing automates those repetitive reconnaissance tasks during RTOs, complete with starter YAML scripts you can customize.

See how Mythic leverages MITRE ATT&CK to map your agents' capabilities & track techniques you've executed in your operations. Watch the tutorial from @its_a_feature_ 👉

The DSInternals PowerShell module just got an upgrade! 🔥. Updates include:.✅ Golden dMSA Attack.✅ Full LAPS support.✅ Trust password & BitLocker recovery key extraction.✅ Read-only domain controller database compatibility. Read more from @MGrafnetter.

If you’re hunting for good news here’s something: Talkspace therapy is covered by most insurance plans and the average copay is only $15 (but most covered members pay $0).