Unicorn Library | Red Team (2)

By Tim Schulz | May 2, 2022

Adaptive Emulation (Part 2): Execution Methods

‍ In part 1 of my adaptive emulation blog series, we covered how small...

Topics:

Red Team, Blue Team, Purple Team, Purple Feature, Red Feature

By Jorge Orchilles | April 11, 2022

Building an Internal Red Team? Go Purple first

I was chatting with a SANS STI student, Antonio Piazza, on Twitter and we...

Topics:

Red Team, Purple Team

By Brandon Radosevich | December 15, 2021

Porting the Log4J CVE PoC to SCYTHE

Over the weekend, the infosec community put together many tools for scanning...

Topics:

Red Team

By Elaine Harrison-Neukirch | September 7, 2021

T1030- Testing Data Transfer Limit Sizes

As a former security analyst, I worked diligently to assure that our...

Topics:

Red Team, Company

By Derek Johnson | August 20, 2021

SCYTHE Domain Fronting through Azure CDN

Guest blog post by one of our partners, Derek Johnson - Senior Cybersecurity...

Topics:

Red Team, Company

By Tim Schulz | July 26, 2021

Adaptive Adversary Emulation (Part 1): Execution Details

TLDR: SCYTHE’s Adversary Emulation Lead Tim Schulz revisits his SANS...

Topics:

Red Team, Purple Team, Purple Feature, Red Feature

By Elaine Harrison-Neukirch | July 15, 2021

Exfiltration Over Alternative Protocol

Blue Teamers, have you been looking for an automated method of discovery...

Topics:

Red Team, Blue Team

By Ateeq Sharfuddin | June 3, 2021

An In-memory Embedding of CPython with SCYTHE

This is Brian Chapman and Ateeq Sharfuddin, and in this blog we discuss a...

Topics:

Red Team, Company

By Ateeq Sharfuddin | April 30, 2021

Loading Capabilities from Memory: Open Sourcing SCYTHE's Windows C In-memory Module Loader

This is Jonathan Lim and Ateeq Sharfuddin, and in this blog we share a...

Topics:

Red Team, Company