The Hacker Library

Search Learning Paths Latest Posts Post of the Day

.NET Assembly Obfuscation for Memory Scanner Evasion

Post

eversinc33

dotnetmalware-developmentobfuscation

"Relaying" Kerberos - Having fun with unconstrained delegation

Post

Dirk-jan Mollema

27m

Feb 18, 2019

active-directorykerberoskerberos-delegationunconstrained-delegation

(Ab)using the Microsoft Identity Platform: Exploring Azure AD Token Caching

Post

Ruben Boonen

28m

Dec 15, 2023

entra-id

(Anti-)Anti-Rootkit Techniques - Part I: UnKovering mapped rootkits

Post

eversinc33

14m

Mar 23, 2024

malware-developmentrootkit

[Cracking Windows Kernel with HEVD] Chapter 0: Where do I start?

Post

mdanilor

Aug 29, 2022

malware-developmentrootkit

0 Click ATO with the Sandwich Attack

Post

Roni Carta

Aug 11, 2023

password-resetuuidweb

A "deep dive" in Cert Publishers Group

Post

Decoder

Nov 20, 2023

active-directoryad-groupsadcs

A Case Study in Wagging the Dog: Computer Takeover

Post

Harmj0y

Feb 28, 2019

active-directorykerberoskerberos-delegationresource-based-constrained-delegation

A Guide to Attacking Domain Trusts

Post

Harmj0y

36m

Oct 30, 2017

active-directoryad-trusts

A Hands-On Edition: Will Supabase Be the Next Firebase (At Least in Terms of Security)?

Post

m1tz

11m

Oct 7, 2025

supabaseweb

A Hitch-hacker's Guide to DACL-Based Detections (Part 1A)

Post

Andrew Schwartz

Megan Nilsen

Oct 10, 2023

active-directorydacl

A Process is No One: Hunting for Token Manipulation

Video

jaredcatkinson

robwinchester13

54m

Jan 8, 2020

access-tokenmalware-developmentwindows

A smorgasbord of a bug chain: postMessage, JSONP, WAF bypass, DOM-based XSS, CORS, CSRF...

Post

May 5, 2023

corscsrfwafxss

A Strange Case of Trusts, Machine Accounts and DNS

Post

Charlie Clark

May 1, 2020

active-directoryad-trusts

A Syscall Journey in the Windows Kernel

Post

Alice Climent-Pommeret

26m

Mar 24, 2022

malware-developmentsyscall

A universal EDR bypass built in Windows 10

Post

Maxime MEIGNAN

Oct 11, 2023

etwmalware-development

AAD Joined Machines - The New Lateral Movement

Video

Mor Rubin

36m

Nov 17, 2022

azure-ad

Abusing AD FS Replication: Stealing AD FS Secrets Over the Network

Post

Douglas Bienstock

Apr 27, 2021

active-directoryadfs

Abusing Azure AD SSO with the Primary Refresh Token

Post

Dirk-jan Mollema

21m

Jul 21, 2020

entra-id

Abusing Client-Side Desync on Werkzeug

Post

Mizu

Jun 7, 2023

http-request-smuggling