WhiteFlag

Is TLS more secure, the WinRMS case. This article introduces a new endpoint to which a NTLM or Keberos authentication can be relayed.
Apr 14, 2025 - 7 min read

Browser Cache Smuggling: the return of the dropper Weaponising BCS and presenting remediations
Mar 24, 2025 - 6 min read

[EN] Insomni'hack 2225: Browser Cache SMuggling Replay of Insomni'hack 2025
Mar 16, 2025 - 1 min read

PsExec'ing the right way and why zero trust is mandatory In this blogpost, we'll see how the PsExec.exe binary works, how we can use it as redteamers to improve remote commande execution and how to protect against it.
Feb 10, 2025 - 20 min read

Dumping LSA secrets, a story about task decoralation In this blogpost we'll see how task decorrelation can be abused to bypass EDR's detection mecanisms during internal assessments
Jul 2, 2024 - 11 min read

Latest posts