This repository contains a collection of technical security blog posts I have authored or co-authored. Many of these posts were originally written while at White Oak Security or Cyber Advisors and are mirrored from their website. https://blog.cyberadvisors.com/technical-blog
- Account Operators Privilege Escalation
- Bypassing Microsoft Defender For Identity
- DNSscope
- Dumping LSASS Without Mimikatz
- Extensis Portfolio Vulnerability Disclosure
- Frevvo Vulnerability Disclosure
- Fun With CORS
- Identifying & Bypassing Responder Detections
- Identifying Web Servers Behind WAFs
- Modifying Java By Editing Bytecode
- Unblinding Blind SQL Injection Using DNS Exfiltration
- Using DNS To Bypass SSRF Protections