Research that leads the way
Our forward-thinking research team (AKA the TrustedSec Research Unit) produces practical TTPs to make your program more secure.
Our research ensures that TrustedSec consultants keep up with the ever-evolving cybersecurity landscape.
We develop advanced tooling with features and capabilities not found in the commercial market.
Meet Christopher Paschen, the TrustedSec Research Team Lead.
Our contributions to the community help us create a more secure world.
Because we constantly research and develop new TTPs, our archives are chock-full of ideas.
BOFs for Script Kiddies
Introduction I hope I don’t sound like a complete n00b, but what or who or where is a BOF? All the cool kids are talking about it, and I just smile and nod. Is…
What this KeePass CVE means for organizations searching for new password vaults
https://youtu.be/OEaFaSjaZY4 After the 2022 LastPass breach, many organizations began searching for alternative password vault solutions. KeePass, a legacy…
Operator's Guide to the Meterpreter BOFLoader
Unlock Meterpreter's full potential with the BOFLoader, elevating it to a modern C2 payload, and discover its capabilities for dynamic functionality addition,…
2023 Resolutions for Script Kiddies
Don't rely on being alt, use multifactor authentication and stay current with software updates to protect against evolving threats in 2023.
More Active Directory for Script Kiddies
Learn how to easily exploit Active Directory for Script Kiddies, a guide to AD enumeration and hacking tools, with TrustedSec.
The Art of Bypassing Kerberoast Detections with Orpheus
Back in May of 2018, I wrote a blog post detailing the steps I took to detect Kerberoast (T1558.003) attacks. This research allowed us to help organizations…
Active Directory for Script Kiddies
Introduction It seems like all these corporate types are using Active Directory. What is this “Active Directory”? And how can I use it to make my job as a…
LastPass Security Vulnerability: How Credentials are Accessed in Memory
Customize the text of our system to suit your needs, unlocking full control over the user experience.
I Wanna Go Fast, Really Fast, like (Kerberos) FAST
Testing and verifying the effectiveness of Kerberos FAST for protection against offline dictionary attacks, a critical security feature for a defense-in-depth…
A Diamond in the Ruff
Create a Diamond Ticket with Rubeus to bypass Kerberos authentication and access sensitive resources, leveraging a low-privileged user and the KRBTGT key.
ELFLoader: Another In Memory Loader Post
This project enables cross-platform ELF loading for Linux, Mac, and Windows, leveraging OS-specific libraries and Cobalt Strike internal functions for a…
g_CiOptions in a Virtualized World
Disabling Driver Signature Enforcement: A Kernel Playground for Attackers, Exploring Windows Vulnerabilities and Exploits.
Loading...
Building a toolset
We make custom tools for engagements and open-source tools for you (and the world).
Learning Sysmon YouTube series
Watch the “Learning Sysmon” video series created by Director of Security Intelligence Carlos Perez. More than 20 videos available!
Staying a step ahead
Attackers are always innovating—but so are we. TRU develops custom training and workshops on subjects not easily found elsewhere. We provide expert services and advice on advanced subjects.
Empower your business through better security design.
Talk directly with our experienced advisory consultants to learn how we can help.
