Recon is such a critical part of penetration testing and is so important it’s been incorporated into frameworks such as OSSTMM, PTES, NIST SP800-115. But why does it need to be strictly for penetration testing? One of the main reasons I love red team training and CTFs is so I can leverage the knowledge as […]
I just finished up dealing with some pretty nasty alerts and events today at work and it got me thinking about this topic. Endpoint detection and response (EDR) tools have been around for awhile now and are really changing the landscape for defenders. They give incident handlers and security analysts so much information and abilities. […]
Some of the best experiences of my life would hands down have to be the SANS NetWars capture the flag (CTF) events! I’ve been very fortunate to be able pay my way through SANS trainings and figured I’d give this a shot as well. Aside from hackthebox.eu, I am fairly green when it comes to […]
Wow – so my first blog post. This is interesting. There are tons of write ups out there on payload creation and bypassing AV but i’d like to write up my own. Hopefully this can help blue teamers understand why defense in depth is king! Let’s start off with the basics: MSFvenom is a powerful […]
defensehorizon.com 