✨ Passwordless Persistence and Privilege Escalation in #Azure by @_wald0

👉 Certificate-Based Authentication(CBA)

👉 Doesnt seem to be any way to differentiate between logins performed with a password vs those performed with certificate
https://posts.specterops.io/passwordless-persistence-and-privilege-escalation-in-azure-98a01310be3f

#infosec #redteam #pentesting #redteamingtips #AzureSecurity #cloudsecurity

Tools and Techniques for Red Team / Penetration Testing

📌Collection of tools and resources that can be useful for red teaming activities

https://github.com/A-poc/RedTeam-Tools

#infosec #redteaming #redteamingtips #bugbountytips #pentesting #appsec #RedteamTools #kalilinux #PentestingTools

Use nim compiled language to evade Windows Defender reverse shell detection

https://infosecwriteups.com/use-nim-compiled-language-to-evade-windows-defender-reverse-shell-detection-a9268b4a3b0e

#infosec #InfosecWriteups #nim #nimlang #nimlanguage #windowsdefender #avbypass #redteamingtips #pentesting

Awesome Server Side Request Forgery(SSRF) mind map by @hackerscrolls

#bugbounty #bugbountytips #redteam #redteamingtips #pentestingtips #pentesting #ssrf #infosecurity

Hacking CDN Caching Servers - CDN cache poisoning write up by @bxmbn

Part1:
https://infosecwriteups.com/how-i-made-15-000-by-hacking-caching-servers-part-1-5541712a61c3

Part2:
https://infosecwriteups.com/how-i-made-16-500-hacking-cdn-caching-servers-part-2-4995ece4c6e6

Part3:
https://infosecwriteups.com/how-i-made-16-500-hacking-cdn-caching-servers-part-3-91f9d836e046?gi=d09625dfc624

#bugbountytips #bughunting #redteamingtips #pentesters #CachePoisoning #CDNSecurity