red-team-tools

Forging a Better Operator Quality of Life

Forging a Better Operator Quality of Life

| | open source, Red Team, red-team-tools, research
A new Mythic add-on for Windows AgentsMythic provides flexibility to agent developers for how they want to describe and execute techniques. While this is great, it also means that when operators hop from ...
Posts By SpecterOps Team Members - Medium
Mythic 3.3 — Out of Beta

Mythic 3.3 — Out of Beta

| | c2-framework, Offensive Security, red-team-tools, research
Mythic 3.3 — Out of BetaMythic 3.3 was released in a Beta six weeks ago, and since then there has been a bunch of feedback, not just about new Mythic 3.3 features but about the ...
Posts By SpecterOps Team Members - Medium
Mythic Development Workflow with @its_a_feature_

Mythic 3.3 Beta: Rise of the Events

| | C2, mythic, red-team-tools, research
A brief overview of Mythic 3.3’s new featuresEventing FlowsMythic 3.3 UpdatesMythic 3.3 has too many updates to mention them all here, so if you want a deeper dive into the change log, please check ...
Posts By SpecterOps Team Members - Medium
Mythic v3.2 Highlights: Interactive Tasking, Push C2, and Dynamic File Browser

Mythic v3.2 Highlights: Interactive Tasking, Push C2, and Dynamic File Browser

| | mythic, Offensive Security, red-team-tools, research, security
TL;DR;Mythic v3.2 has Push C2, Interactive Async Tasking, TypedArray parameters, new graphing libraries in the UI, database migrations, dynamic file browser groupings, and more!Image Generated by https://hotpot.ai/art-generatorMythic v3.2It’s been a few months since ...
Posts By SpecterOps Team Members - Medium
Phishing With Dynamite

Phishing With Dynamite

| | hacking tools, Penetration Testing, Phishing Attacks, red-team-tools, research
Token stealing is getting harder. Instead, stealing whole logged-in browser instances may be an easier and more generic approach. One attack, known as “browser-in-the-middle” (BitM), makes it possible to virtually place a ...
Posts By SpecterOps Team Members - Medium
Bloodhound Enterprise: securing Active Directory using graph theory

Bloodhound Enterprise: securing Active Directory using graph theory

| | Active Directory, bloodhound-enterprise, blue-team-tool, Cybersecurity, red-team-tools
BloodHound Enterprise: securing Active Directory using graphsPrior to my employment at SpecterOps, I hadn’t worked in the information security industry- as a result, many security related terms and concepts that were tossed around ...
Posts By SpecterOps Team Members - Medium
COSMICENERGY: ‘Russian’ Threat to Power Grids ICS/OT

COSMICENERGY: ‘Russian’ Threat to Power Grids ICS/OT

| | COSMICENERGY, electric grid, electrical grid, Electrical grids, energy grid, grid cyber attack, ICS, IEC 60870-5-104, IEC-104, INCONTROLLER, Industroyer, Industroyer2, Malware, OT, power grid, Power-Grid Security, Red Team, Red team exercises, red team operations, red team testing, Red Teaming, Red Teams, red-team-tools, redteam, Russia, Russia Exodus, Russia power grid, Russia-Ukraine, russia-ukraine conflict, Russia's War on Ukraine, russian, Russian Cyber War, SB Blogwatch, Solar Polygon, triton, TRITON ICS malware, Triton malware
Shouty name—dangerous game. Red-team tool ripe for misuse ...
Security Boulevard
Mythic 2.3 — An Interface Reborn

Mythic 2.3 — An Interface Reborn

| | mythic, red-team-tools
Mythic 2.3 — An Interface RebornNew Mythic SearchMythic started off as a proof of concept, open source project in 2018 with a small follow-on blog series for the process and the rationale of the various ...
Posts By SpecterOps Team Members - Medium