Maximizing Red Team Engagement Potential
Red Team, Take Two: Insights From Both The Consultant & The Executive – Presentation Join us at the 2023 Cyber Security Summit in Minneapolis, MN! We presented this material live […]
Red Team
Phishing Email For Success – Part 4
Welcome to part 4, my Phishing friends. Thanks for returning to our Phishing For Success series! As you probably know by now, Iām a Senior Threat Emulation Specialist here at […]
Flipper Fanclub: Part 2 – Updating Flipper Zero
Updating Your Flipper Zero: A Guide to Firmware Updates (RogueMaster Edition) NOTE: Flipper Fanclub Part 1 is located here! The Flipper Zero is a powerful and versatile device, but like […]
Rogue Devices As Vector For Kinetic Attacks
UPDATE: This blog post was written prior to the USB explosive incident in Ecuador. Some edits have been made to note these events. DISCLAIMER* The following blog post describes a […]
What Is A Penetration Tester
Welcome to this post in the Interview With A Pentester blog series! We will interview a White Oak Security expert to discuss what is a penetration tester, how this cybersecurity […]
Phishing For Success – Part 3 & Autosneakphish Tool
Hi, again folks! Welcome back, I am a Senior Threat Emulation Specialist at White Oak Security. The majority of my time in the Cyber Security field has been focused on […]
CCDC 2023
Red Team Volunteering Experiences From The Collegiate Cyber Defense Competitions This blog post will shed light on the experiences of a few of our White Oak Security penetration testers that […]
Flipper Fanclub: Part 1 – Flipper Zero Pentesting
WELCOME TO THE FANCLUB! Part 1 of the Flipper Fanclub Series will be going over the Flipper Zero tool. We will discuss what it is, how to use it (from […]
How To Pick A Tubular Lock
Tubular Lock The tubular lock has many different names including: circle pin tumbler lock, radial lock, or ace lock. The tubular lock consists of multiple stacks of pins in a […]
Account Operators Privilege Escalation
On a recent Red Team engagement, White Oak Security had compromised a domain and dumped the Active Directory user password hashes. We attempted to pivot into another domain using shared […]