Extracting credentials from Azure Entra Connect.
Using password filters to intercept logon credentials.
Persuading Windows hosts to provide machine account credentials.
Using LD_PRELOAD for dynamic function hooking and privilege escalation.
Testing IPv6 security.
Intercepting multi factor authentication credentials using an Nginx reverse proxy.
Sending Phishing emails to capture login credentials.
Using Terraform to deploy testing infrastructure & auditing Terraform configuration files.
Logging Keystrokes with SetWindowHookEx.
Attempting to use binary signature policies and arbitrary code guard to bypass userland hooks.
Supplying arbitrary PPID values to CreateProcess.
Exploiting file upload vulnerabilities to execute arbitrary code.
SQL Injection for MySQL databases.
Exploiting XML parsers.
Identifying web content to launch further attacks.
Injecting malicious code into web applications.
Encoding Shellcode for use within malware.
A review of the CBBH course and exam.