We identified Ivy framework fileless attack techniques that execute undetected in Microsoft Office. Here's how with suggested security augmentations.

To better understand endpoint security vendor container environment coverage offerings, Optiv conducted a comparative runtime protection test.

We leveraged Microsoft’s OAuth authorization flow for a phishing attack. Here’s step-by-step guidance on how to conduct it for security assessment.

Multiple CVEs involving Active Directory Certificate Services and a new NTLM relay attack can be chained to compromise an Active Directory domain.

Go365 performs user enumeration and password spraying attacks on organizations that use Office 365.

Optiv highlights the attack strategy of using forged Kerberos tickets to compromise a domain, and provides ways to defend against it.

Optiv highlights the attack strategy of using forged Kerberos tickets to compromise a domain, and provides ways to defend against it.

This article explores gaps that allow for the undetected execution of code on systems protected by Microsoft Defender Advanced Threat Protection.

Firefox’s appsec add-ons make it a useful tool for new pen testers who can’t afford professional tools.

MobileIron MDM exposes account enumeration and SFA to unauthenticated attacks. This analysis details how to mitigate this vulnerability.

Given Office product functionality, it’s possible for adversaries to leverage Outlook's COM interface in attacks for extended persistence.