https://m19o.github.io/m19o - أبومسلمSecurity blog contains diffreent topics in Red/Blue team. 2024-01-14T01:18:59+00:00 Mohamed Magdy Abumuslim - أبومسلم https://m19o.github.io/ Jekyll © 2024 Mohamed Magdy Abumuslim - أبومسلم /assets/img/favicons/favicon.ico /assets/img/favicons/favicon-96x96.png Attacking AWS Cloudtrail 1012023-11-24T05:40:00+00:00 2023-11-24T22:27:43+00:00 https://m19o.github.io/posts/Attacking-AWS-Cloudtrail-101/ Mohamed Magdy Abumuslim - أبومسلم Introduction I was inspired by @Frichette_n research about Cloudtrail bypasses and I didn’t find any material or talks discussing how we can attack Cloudtrail. I presented this research @BsidesABQ Since logging is one of our enemies in red team operations, I decided to do my research on how to attack Cloudtrail from Adversary perspective. Table of content Service-link Channels ... HTB Business CTF 20232023-07-20T02:11:00+00:00 2023-07-20T02:11:00+00:00 https://m19o.github.io/posts/HTB-Business-CTF-2023/ Mohamed Magdy Abumuslim - أبومسلم TL:DR Hello Folks, I will share my writeup for the Scada Challenge. I hope you enjoy and benefit from the blog post. WatchTower Challenge Description Our infrastructure monitoring system detected some abnormal behavior and initiated a network capture. We need to identify the information the intruders collected and altered on the network. Methodology As someone who has zero knowledge of... Certified Red Team Expert (CRTE ) Review2023-03-18T04:25:00+00:00 2023-07-26T23:26:41+00:00 https://m19o.github.io/posts/Certified-Red-Team-Expert-(CRTE-)-Review/ Mohamed Magdy Abumuslim - أبومسلم Table of Content Introduction How to prepare for CRTE Useful blogs Lab Review Exam Should you go for it or not Introduction The purpose of this blog to outline my experience as Security consultant/Red team operator in Windows Red Team lab course by Nikhil Mittal and provide my own insight into the course content, how to get the most advantage o... 1.2 LDAP the AD2023-02-25T04:57:00+00:00 2023-07-26T23:26:41+00:00 https://m19o.github.io/posts/1.2-LDAP-the-AD/ Mohamed Magdy Abumuslim - أبومسلم Definition : The Lightweight Directory Access Protocol (LDAP) is a directory service protocol that runs on a layer above the TCP/IP stack. It provides a mechanism used to connect to, search, and modify Internet directories. The LDAP directory service is based on a client-server model. The function of LDAP is to enable access to an existing directory. What is directory services ? Directory s... 1.1 Enum the AD2023-01-20T03:17:00+00:00 2023-07-26T23:26:41+00:00 https://m19o.github.io/posts/1.1-Enum-the-AD/ Mohamed Magdy Abumuslim - أبومسلم Introduction An active directory allows network administrators to manage domains, users, and objects in a respective network. Now, as the network grows, the AD provides a way to organize large number of users into those logical groups and subgroup offering access control to each level. Active Directory enumeration, on the other hand, is a process that helps extracting information from the AD...