Route Zero: Security Tools, Tips & Recs

  • Question of the Day: Go Source Code Vulnerability

    Continue ⇢

  • What is OSCP+?

    The Offensive Security Certified Professional Plus, or OSCP+, is the newest addition to the cadre of certifications offered by Offensive Security (OffSec), the shadowy overlords of hardcore cybersecurity training. If you’re familiar with the regular OSCP and its hallowed “Try Harder” mantra, the OSCP+ is, essentially, the OSCP with a… Continue ⇢

  • Proving Grounds Practice: Hepet Walkthrough

    Introduction Welcome back! Today, I will guide you through Hepet, an intermediate-level Windows machine on OffSec’s Proving Grounds Practice. In this walkthrough, we will exploit the target by discovering crucial information in emails accessed using leaked credentials. We will use this information to send a spreadsheet containing a malicious macro,… Continue ⇢

  • Proving Grounds Practice: Heist Walkthrough

    Welcome back! Today, I will guide you through Heist, a Try Harder Windows machine on OffSec’s Proving Grounds Practice. Enumeration Nmap Let’s kick things off with a thorough port scan of our target. The port numbers suggest this is a Windows domain controller. The real interesting bit, though, is that… Continue ⇢

  • Top OSINT Tools for Pentesters

    In pentesting, Open Source Intelligence (OSINT) is a crucial first step. It involves gathering publicly available information about a target, which can be used to make attacks more targeted and effective. There are powerful tools that facilitate the search, collection, and analysis of this information, and in this article, we’ll… Continue ⇢

  • Cobalt Strike: Is It Worth the Investment for Pentesters and Security Teams?

    In the field of offensive cybersecurity, few tools have garnered as much respect and notoriety as Cobalt Strike. Known for its powerful capabilities in simulating advanced persistent threats (APTs), Cobalt Strike allows security teams and pentesters to test the resilience of organizational defenses against sophisticated attacks. However, this capability comes… Continue ⇢

  • The Best 2024 MacBook Pro Options for Cybersecurity Professionals

    This month, Apple refreshed its MacBook Pro lineup with the updated M4 chip with promising Geekbench results and early reviews. With the M4 Max hitting an unprecedented 4060 in single-core and 26,675 in multi-core benchmarks—crushing its M2 Ultra predecessor and marking a 37% performance jump over the M3—these refreshed machines… Continue ⇢

  • Windows Lateral Movement

    Windows NTLM Refresher Microsoft’s NT LAN Manager (NTLM) offers a series of security protocols aimed at verifying users’ identities while safeguarding data privacy and integrity. As an SSO (Single Sign-On) solution, NTLM uses a challenge-response process to confirm user identity without exposing the password itself.Despite its recognized limitations, NTLM is… Continue ⇢

  • Proving Grounds Practice: CVE-2024-25180 Walkthrough

    Welcome back to another PG Practice writeup! Today, we’ll walk through the newest machine in OffSec’s Proving Grounds Practice: CVE-2024-25180, an intermediate-level Linux machine that was just released yesterday! Enumeration As always, we’ll kick things off with an nmap scan to discover open ports and services on the target. Our… Continue ⇢