Red Teaming · 46 articles

Red Teaming

AD exploitation, lateral movement, persistence, defense evasion — MITRE ATT&CK aligned playbooks.

Mobile Pentest

Android Frida: SSL Pinning Bypass and Runtime Hooking in 2026

The practitioner workflow for Android pentesting with Frida 16+ — SSL pinning bypass, root detection bypass, runtime function hooking, and the layered…

Apr 25, 2026 · 4 min read
Mobile Pentest

Drozer: Android Application Security Testing for IPC Vulnerabilities

Drozer for Android pentest — discovering exposed Activities, Services, Broadcast Receivers, Content Providers; SQL injection in providers, path traversal, broadcast privilege escalation.…

Apr 25, 2026 · 4 min read
Mobile Pentest

iOS Pentest with MASVS in 2026: The Practitioner Workflow

OWASP MASVS-aligned iOS pentest in 2026 — Frida, Objection, Hopper, Ghidra. Lab setup with jailbroken device, the 8 MASVS-L2 controls Indian apps…

Apr 25, 2026 · 4 min read
Cloud Security

Docker Container Escape Techniques in 2026

Container escapes in 2026 — privileged containers, mounted Docker sockets, capability abuse, hostPID + ptrace, runC CVE-2019-5736, kernel CVEs. Detection with Falco…

Apr 25, 2026 · 4 min read
Red Teaming

Wireless Pentest in 2026: WPA3, PMKID Attacks, Evil Twin

Wireless attacks that work in 2026 — WPA3 transition mode, Dragonblood, PMKID extraction, evil-twin captive portals, EAP-TLS misconfiguration, EAP-PEAP/MSCHAPv2 cracking. Toolchain and…

Apr 25, 2026 · 4 min read
Red Teaming

Linux Sudo Privilege Escalation: 8 Paths You Need to Know in 2026

Eight sudo-based Linux privilege escalation paths — shell-spawning binaries (GTFOBins), insecure script paths, env_keep PATH, LD_PRELOAD, wildcard expansion, writable binaries, sudo CVEs…

Apr 25, 2026 · 6 min read
Red Teaming

DirtyPipe (CVE-2022-0847): Why This 3-Year-Old Linux Kernel CVE Still Hits Indian Production

DirtyPipe was disclosed in March 2022. The fix has been available for three years. Yet 1 in 5 Indian Linux pentests still…

Apr 25, 2026 · 6 min read
Active Directory

SeImpersonatePrivilege: From Service Account to SYSTEM in 10 Seconds (Potato Attacks 2026)

Service accounts with SeImpersonatePrivilege are 10 seconds from SYSTEM via Potato attacks — JuicyPotato, RoguePotato, PrintSpoofer, GodPotato. Why the privilege exists, how…

Apr 25, 2026 · 5 min read
Red Teaming

PrintNightmare in 2026: The Bug Class Microsoft Couldn’t Quite Kill

PrintNightmare (CVE-2021-1675/34527) was supposed to die in 2021. Print Spooler bugs continue producing new CVEs every year. The bug, the variants since…

Apr 25, 2026 · 5 min read
Active Directory

Pass-the-Hash in 2026: Why Microsoft’s Mitigations Aren’t Enough

Pass-the-Hash is a 1997 attack that should have died in 2014. It still works in most Indian enterprise environments because the mitigations…

Apr 25, 2026 · 6 min read