Remote Execution with sc.exe on Windows: A Red Team Guide
A practical red team guide to remote code execution using sc.exe on Windows—covering payload creation, encoding, service configuration, and execution.
Tools
Chisel - Tunneling Traffic with SSH over HTTP
Comprehensive guide to Chisel: traffic tunneling via SSH over HTTP, with installation, use cases, and advanced tips for overcoming network restrictions.
Using xfreerdp and Pass-the-Hash for RDP Connection
This article explores how to use xfreerdp and Pass-the-Hash technique to connect to an RDP server and provides practical examples, usage guidance, and known limitations.
Tunneling Traffic through a Network: Techniques for Combining Iptables Port Redirection, SSH Tunnels, and Netsh Port Proxies
This article explains how to tunnel traffic through a network using iptables port redirection, SSH tunnels, and netsh port proxies.
How to Use Impacket Example Scripts to Access Microsoft SQL Server from Linux
This article explains how to use Impacket example scripts to access Microsoft SQL Server from Linux.
Using Impacket to Access Windows Shares from Linux
This article explains how to use Impacket example scripts to access Windows shares from Linux.
Basic Introduction to smbclient
Discover smbclient’s basics, obscure flags, and practical uses in red teaming and pen testing in this introductory article.
How to Install Impacket
Explore this guide on installing and using Impacket, a Python network protocols library, emphasizing its role in penetration testing with real-world examples.
Using WMIC for Red Teaming: A Practical Guide for Offensive Security
A hands-on guide for red teamers and pen testers on using the Windows Management Instrumentation Command-line (WMIC) for system enumeration, remote command execution, and more.