Resources
Latest Reconnaissance Resources
Discovering wp-admin.php URLs in Wordpress With GravityForms
By targeting a specific endpoint and passing in a random string, GravityForms will prompt users to authenticate first. This results in the unauthenticated user being redirected to the obscured administrative login page…
Read more
Password Spraying Self-Hosted Microsoft Services
Self-hosted Microsoft services, such as Exchange and Skype for Business, are ideal targets for password spraying attacks. Learn more about how these threats work and how to protect your business. read more →
Reliable Username Enumeration: A step-by-step guide
Collecting and validating an organization’s employee base is critical for any successful offensive information security operation. read more →
Launching a pentest: How to discover related DNS records
When starting a penetration test, we first try to discover domains associated with our target apex domain. To help you navigate this part of the process, we’re going to detail it, highlighting tips and tricks for… read more →
Discovering Active Directory Controllers in your Client Network
After initially accessing an internal network during a penetration test, you need to find out what the Active Directory (AD) infrastructure looks like. Here, we’re going to examine methods for this process from both… read more →
How to: Execute passive internal recon during continuous penetration testing
When we launch continuous penetration testing in a new network, we don't want to raise suspicion of our presence. For one reason, we may be able to get credentials without doing anything intrusive at all. To do it, we… read more →
Protect your company with Sprocket
Know your threats when they emerge.
When your environment changes, or new threats affect your attack surface, we perform security testing. There is a lot more value from this modern approach to testing.
Continuous Penetration Testing Subscription
- Pentests
- Web App Testing
- Red Teaming
- Social Engineering
- Adversary Simulations