<502edbb8> Ill seed this chan with a few articles to get the juices flowin
<502edbb8> <https://pastebin.com/8rXhtqgr>
<502edbb8> <http://www.harmj0y.net/blog/powershell/command-and-control-using-active-directory/> bending c2c around all network boundaries.\
<502edbb8> harmj0y is one of the best AD pen testers around (that publishes at least)
<502edbb8> It’s a brilliant use of AD for c2
<502edbb8> <https://www.dallashackers.com/> &lt;— local dallas clique if you guys wana reach out
<502edbb8> <https://www.zerohedge.com/technology/visualizing-massive-cost-cybercrime>
<502edbb8> <https://www.zdnet.com/article/confirmed-north-korean-malware-found-on-indian-nuclear-plants-network/> Y’all see this shiz? It was crazy to watch go down. Hardcorded DA creds in a malware sample uploaded to virus tech. Doing unencrypted challenge/response style auth to some random IP. Then an IT admin from the plant got notified via twitter and you could watch his face melt in real time as he realized what was going down.
<502edbb8> There we go, those were from my cyber group chat.