BloodHound OpenGraph isn’t just about AD anymore. In his latest Risky Biz interview, @jaredcatkinson breaks down how OpenGraph now maps attack paths across GitHub, AWS, SaaS, CI/CD, and beyond, allowing defenders to see what attackers see. 🎧: https://t.co/RrzPKgQmJD

Blogs are up!

Thank you, Philly! Huge shoutout to everyone who stopped by the Red Team Village at @BSidesPhilly. We loved meeting you, learning with you, and seeing the community show up with so much talent and energy. And major congrats to our RTV CTF winners — you crushed it. 🏆🔴🐉 See you

That's a wrap! The @RedTeamVillage #CTF at @BSidesPhilly is officially over. Congratulations to the winners and everyone who participated! See the final results here: https://t.co/tZlO503vQM #RedTeamVillage #BSidesPhilly #HackingCommunity

SCOM monitors critical systems, but insecure defaults make it a powerful attack vector. At #BHEU, @unsigned_sh0rt & @breakfix show how to abuse SCOM for credential theft, lateral movement, and domain escalation, plus how to defend it. https://t.co/bxW5PYyhyl

See you all next week...excited to present with @breakfix at #BHEU! 💣

Extremely thankful for family, friends, and coworkers both former and current. I would not be where I am without you and your belief in me and support!

New blog post is up exploring a vuln I found in Claude Code (CVE-2025-64755) allowing arbitrary file write without a consent prompt. New tech is always fun to explore, hopefully this post gives you some hints as to future research :)

I see lots of posts from job seekers mentioning how they’ve spent many months and countless hours applying to thousands of jobs without any success. With everyone else mostly doing the same thing and with these (awful) ATS systems at play, I’m not certain this is the best use of

Cleaned out my cable bin. Pretty sure I will have a need for a random obscure cable once the trash comes this week.

I feel like @YuG0rd's briefly mentioned new dMSA account takeover mechanism in his last blog didn't get enough attention. A new account takeover mechanism is on the horizon. I wrote a blog detailing it, releasing with a new BOF I wrote called BadTakeover https://t.co/fyUkDYKAeP

https://t.co/X5ChPpoYKv

We came, we stormed, we CONQUERED.🙌

Off to San Diego for offensive ai con

Keep thinking.

#MiamiHerbert earned its highest placements to date in @usnews's 2026 rankings! Read more: https://t.co/tPbTb7M8SG

App-Bound Encryption isn't stopping hungry attackers from getting into the cookie jar. 🍪 Join Andrew Gomez & Antero Guy at #BSidesDenver Sept 12 to learn how threat actors are still stealing browser secrets, plus a sweet EntraID cloud pivot bonus. ➡️ https://t.co/vayrK5j1Cz

I Just documented a cool way to authenticate proxied tooling to LDAP in an AD environment using C2 payload auth context, without stealing any tickets or hashes! Keep tooling execution off-host and away from EDR on your Red Team assessments! https://t.co/VLE2Kh4idY

Trying to fly under EDR's radar? @_logangoins explains how to use HTTP-to-LDAP relay attacks to execute tooling completely off-host through the C2 payload context. Perfect for when you need LDAP access but want to avoid being caught stealing creds.

New blog post just dropped! West Shepherd breaks down extending the Mythic Poseidon agent for ARM64 Dylib injection on Apple Silicon. Details include: ✅ Shellcode construction ✅ Memory allocation ✅ Runtime patching ✅ Thread creation Read more ⤵️