Denny Fischer

From spoofing to tunnelling: New Red Team networking techniques for initial access and evasion blog.apnic.net/2026/01/16/fro… #infosec #redteam

TaskHound hunts privileged Windows scheduled tasks and exports them for BloodHound attack path analysis. github.com/1r0BIT/TaskHou… #infosec #pentest #redteam

NetExec Lab is a set of hands-on labs used in the NetExec workshop and CTF to help you mastering NetExec for your next pentest engagement. github.com/Pennyw0rth/Net… #infosec #pentest

Extracts browser-stored data such as refresh tokens, cookies, saved credentials and more from modern Chromium-based and Gecko-based browsers (Chrome, Microsoft Edge, Firefox, Opera, Opera GX and Vivaldi). github.com/Maldev-Academy… #infosec #pentest #redteam

Many cybersecurity myths are outdated and distract from real risks. An open letter calling for practical, evidence-based security advice. Read more: hacklore.org/letter #infosec

ProfileHound is a tool that enumerates Windows domain user profiles via the C$ share and exports them to BloodHound as a HasUserProfile edge making it easy to see which users have profiles on which hosts. github.com/m4lwhere/profi… #infosec #pentest #redteam

Native Sysmon functionality coming to Windows techcommunity.microsoft.com/blog/windows-i… #infosec #blueteam

"HELP! MY ACCOUNT GOT HACKED!" - Business Email Compromise (BEC) Part 1 truesec.com/hub/blog/help-… "The Anatomy of a Business Email Compromise Attack" - Business Email Compromise (BEC) Part 2 truesec.com/hub/blog/the-a… #infosec #blueteam

Harden Windows Security by @CyberCakeX is an open source PowerShell module (with GUI/CLI/Unattended mode) that documents, automates and hardens Windows security settings based on supported Microsoft mechanisms github.com/HotCakeX/Harde… #infosec #blueteam

If you have Active Directory Certificate Services (ADCS) in your environment, run Locksmith now! In Active Directory Security Assessments, we have found critical security issues in *most* ADCS configurations. The great thing about Locksmith is that it doesn't just highlight the security issues in your ADCS environment, but also provides the command to remediate it! If you're a pentester/red teamer, Locksmith is great for you to provide remediation recommendations to your customers. github.com/jakehildreth/L… #ActiveDirectorySecurityTip

Prowler by @ProwlerCloud is an open-source security tool that helps assess and enforce security best practices across AWS, Azure, Google Cloud and Kubernetes. github.com/prowler-cloud/… #infosec #BlueTeam

This is so much! 🔥🔥😎 Found two new Potato triggers just today. Not only Potato but can also be used for LPE as remote auth is done which could be relayed to LDAP without Signing enabled. Or relayed to ADCS for a certificate. github.com/warpnet/MS-RPC…

Ransomware Tool Matrix by @BushidoToken: This repository lists tools used by ransomware gangs. Defenders can detect and block these commonly reused tools to stop intrusions. github.com/BushidoUK/Rans… #infosec #blueteam

State-of-the-art phishing: MFA bypass by Jaeson Schultz @talossecurity blog.talosintelligence.com/state-of-the-a… #infosec #blueteam

ArgFuscator is an open-source web app that generates obfuscated command lines for common system tools. Great for testing your defenses against real-world attack techniques. argfuscator.net #infosec #pentest #redteam #blueteam

How well do you protect your privacy? The Privacy Checkup helps you assess your online surveillance defenses and take steps to protect your data. privacy-checkup.info (English, Deutsch, Español) #privacy #infosec

A great read on the exploitation of VMware vulnerabilities - from both attacker and defender perspectives - plus practical recommendations to strengthen your security posture. Breaking the Virtual Barrier: From Web-Shell to Ransomware sygnia.co/threat-reports… #infosec #blueteam

Eine kriminelle Organisation hinter mehr als 75.000 Fake-Shops, >1M Bestellungen & >$50M Schaden. Einblick in ihr ausgeklügeltes System & wie sie Käufer täuschen. #38C3: "Fake-Shops von der Stange: BogusBazaar" mit @kaibiermann und kantorkel. media.ccc.de/v/38c3-fake-sh… #infosec

Twitter: "Mastering Sysmon: Deploying, Configuring, and Fine-Tuning" by @dfirinsights A free mini eBook for #DFIR professionals with practical steps to deploy, fine-tune, and start logging with Sysmon. dfirinsights.com/2024/11/27/mas… #infosec #blueteam

Carseat by @0xthirteen is a Python implementation of GhostPack's Seatbelt, a situational awareness tool for analyzing Windows security configurations. github.com/0xthirteen/Car… #infosec #pentest #redteam