Index for bigb0ss Blogs
Advisories
CVE
- [CVE-2020–15931] Netwrix Account Lockout Examiner 4.1 Disclosure Vulnerability
- [CVE-2021–28428] Authenticated RCE found in HorizontCMS — Part 2 (PHP Filetype Bypass)
Security Research
Bug Bounty
RedTeam
Infrastructure
- [RedTeam] C2 Redirector — Cloud Fronting Setup (AWS)
- [RedTeam] C2 Redirector — Domain Fronting Setup (Azure)
- [RedTeam] Rotating Source IPs (Part 1) — AWS API Gateway
- [RedTeam] Rotating Source IPs (Part 2) — Cloud Proxy
Cobalt Strike
- [RedTeam] Cobalt Strike 4.0+ Malleable C2 Profile Guideline
- [RedTeam] Review of Red Team Operations with Cobalt Strike (2019) Training Course (Part 1)