Oliver LyakinIFCRPass-the-Challenge: Defeating Windows Defender Credential GuardIn this blog post, we present new techniques for recovering the NTLM hash from an encrypted credential protected by Windows Defender…Dec 26, 20221Dec 26, 20221
Oliver LyakinIFCRCertipy 4.0: ESC9 & ESC10, BloodHound GUI, New Authentication and Request Methods — and more!A new version of Certipy has been released along with a forked BloodHound GUI that has PKI support! In this blog post, we will look at…Aug 4, 20221Aug 4, 20221
Oliver LyakinIFCRCertifried: Active Directory Domain Privilege Escalation (CVE-2022–26923)In this blog post, we’ll dive into a recently patched Active Directory Domain Privilege Escalation vulnerability that I reported through…May 10, 20221May 10, 20221
Oliver LyakinIFCRCertipy 2.0: BloodHound, New Escalations, Shadow Credentials, Golden Certificates, and more!As the title states, the latest release of Certipy contains many new features, techniques and improvements. This blog post dives into the…Feb 19, 2022Feb 19, 2022
Oliver LyakinIFCRSpoolFool: Windows Print Spooler Privilege Escalation (CVE-2022-21999)In this blog post, we’ll look at a Windows Print Spooler local privilege escalation vulnerability that I found and…Feb 8, 20224Feb 8, 20224