You might be aware of the recent ByBit security breach, where an employee from Safe inadvertently downloaded a GitHub repository, a piece...

As part of our engagements, we may compromise access to network devices that can be used to capture traffic in various network segments....

As part of our red team engagements, we may sometimes utilize Fireprox to obtain a larger number of IP addresses for various actions,...

Often we have customers that require Red Teaming from a black-box perspective where we don't get provided an e-mail list. A relevant...

Evilginx3: A Favorite Tool for Many Red Teamers As part of our authorized engagements, customers often request us to simulate phishing...

We often get asked to perform targeted social engineering as part of our engagements. Personas and sock puppet accounts are usually...

Azure Applications are often recognized by the well-known *.azurewebsites.net domains. We've long abused Azure-related infrastructure...

TLDR We got fed up with Google Safe Browsing, so we quickly whipped up a piece of code that fetches the origin, encodes it, and renders...

Introduction Wikipedia: Stable Diffusion is a deep learning, text-to-image model released in 2022 based on diffusion techniques. It is...

What are DevTunnels? Dev tunnels allow developers to share local web services across the internet securely. It enables you to connect...