Image Up-to-date information and research on red and blue team security capabilities, objective tools analysis, new research and step-by-step solutions. The Source Zero platform is a community of Optiv’s skilled individuals doing research and sharing their expertise. The Source Zero Tools are resources that provide actionable support and demonstrations around research initiatives. Search Terms Type - Any -BlogToolVideo Team - Any -RedBluePurple/No Team Sort By LatestOldest Apply Filters Clear Filters Image Automated Endpoint Evaluations – Part 2 October 07, 2021 This video discusses Optiv's creation of Azure Resource Groups and Security Groups as part of a Power Automate Cloud Flow. See Details Blog Image Microsoft 365 OAuth Device Code Flow and Phishing August 17, 2021 We leveraged Microsoft’s OAuth authorization flow for a phishing attack. Here’s step-by-step guidance on how to conduct it for security assessment. See Details Blog Image Automated Endpoint Evaluations – Part 1 August 12, 2021 Optiv researcher Dan Kiraly examines automated endpoint evaluations in the first technical video of a series. See Details Blog Image PetitPotam & Active Directory Certificate Services August 10, 2021 Multiple CVEs involving Active Directory Certificate Services and a new NTLM relay attack can be chained to compromise an Active Directory domain. See Details Blog Image Go365: Office 365 Password Spraying Tool June 17, 2021 Go365 performs user enumeration and password spraying attacks on organizations that use Office 365. See Details Blog Image Kubernetes Attack Surface June 17, 2021 Optiv highlights the attack strategy of using forged Kerberos tickets to compromise a domain, and provides ways to defend against it. See Details Blog Image Kerberos - A Domains Achille's Heel June 02, 2021 Optiv highlights the attack strategy of using forged Kerberos tickets to compromise a domain, and provides ways to defend against it. See Details Blog Image Breaking the (WDAPT) Rules with COM May 12, 2021 This article explores gaps that allow for the undetected execution of code on systems protected by Microsoft Defender Advanced Threat Protection. See Details Blog Image Credential Theft Prevention With a Palo Alto Networks NGFW April 23, 2021 We encourage clients to understand and adopt Palo Alto’s powerful credential theft prevention feature. See Details Blog Image Accelerating Vulnerability Remediation with Automation April 12, 2021 We reduced mean time to remediate by accelerating the processes from vulnerability discovery to the deployment of a corrective system update. See Details Blog Image Firefox Addons For Application Security Testing March 24, 2021 Firefox’s appsec add-ons make it a useful tool for new pen testers who can’t afford professional tools. See Details Blog Image MobileIron MDM Contains Static Key Allowing Account Enumeration March 22, 2021 MobileIron MDM exposes account enumeration and SFA to unauthenticated attacks. This analysis details how to mitigate this vulnerability. See Details Blog Pagination Current page 1 Page 2 Page 3 Page 4 Next page Next › Last page Last » Introducing Source Zero Our new technical cybersecurity thought leadership resource, Source Zero, focuses on red and blue team security capabilities, objective tools analysis, and more.