You can create a release to package software, along with release notes and links to binary files, for other people to use. Learn more about releases in our docs.

This is a quick lab to familiarize with an Active Directory Certificate Services (ADCS) + PetitPotam + NLTM Relay technique that allows attackers, given ADCS is misconfigured (which it is by default), ...

CVE-2025-21377 - NTLM Hash Disclosure Spoofing Vulnerability Microsoft fixed a publicly disclosed bug that exposes a Window user's NTLM hashes, allowing a remote attacker to potentially log in as ...

Critical52Important0Moderate0LowMicrosoft addresses 55 CVEs with three rated critical and four zero-day vulnerabilities, including two that were exploited in the wild.Microsoft patched 55 CVEs in its ...

In this second post of a five-part series, I provide advice on how to best utilize the PEN-200 course material for a ...

The threat was also seen loading additional modules used to retrieve networking information, execute PowerShell commands, and start new processes with stolen NTLM hashes using a custom Pass-the-Hash ...

Patch Tuesday cumulative update It fixes 55 security flaws, including four zero-days Of the four zero-days, two are being actively exploited Microsoft has fixed a total of 55 Windows security ...

The other publicly disclosed flaw was CVE-2025-21377, an NTLM hash disclosure spoofing vulnerability, which allows bad actors to access your computer's NTLM hash to obtain your plain-text password.