Red Teaming – Hacking & Coffee

Red Team Laptop & Infrastructure (pt 1: Architecture)

28 February 2018

hon1nbo

No comments

Categories: Guides, Red Teaming, Security

I get a lot of questions about my laptop, ranging from “Windows or Mac?” to “do you have a preferred chipset for Ethernet NICs.”

Well, with the exception of “neither” to the first question, most things will vary. Rather than talk about specific hardware or version choices, I’m going to talk about Architecture; in future posts I’ll talk about specific ways of implementing my Infrastructure architecture for supporting penetration testing, but for now we will focus on the high level. This design is Reasonably secure in the right hands, fast, and extremely flexible.

Serving malware via physical legal documents

7 June 2016

hon1nbo

No comments

Categories: Guides, Red Teaming

I have decided to post about a personal trick I created and have used for quite a while. Given that most process servers are private entities, rather than actual members of the court, they are ready for hire without filing an actual legal process. Thus, it is possible for an official looking person to arrive at a target and present the payload in person without ever leaving a trace of your identity. This physical legal document has successfully gained my administrator credentials from targets that normally have a high level of security awareness, and usually catch phishing attempts.

Red Team Entry Pack

29 March 2016

hon1nbo

No comments

Categories: Red Teaming

Over the years I have acquired many tools and tricks used to gain entry to a target office. At DEFCON 23 I got a lot of questions regarding my custom pack, and the gear inside.

While I cannot share every detail (that would give away too many trade secrets), I have dissected the general pack here for your perusal.