Reposted by Evan McBroom
Credential Guard was supposed to end credential dumping. It didn't.
Valdemar Carøe just dropped a new blog post detailing techniques for extracting credentials on fully patched Windows 11 & Server 2025 with modern protections enabled.
Read for more: ghst.ly/4qtl2rm
Valdemar Carøe just dropped a new blog post detailing techniques for extracting credentials on fully patched Windows 11 & Server 2025 with modern protections enabled.
Read for more: ghst.ly/4qtl2rm
Catching Credential Guard Off Guard - SpecterOps
Uncovering the protection mechanisms provided by modern Windows security features and identifying new methods for credential dumping.
ghst.ly
October 23, 2025 at 5:45 PM
Credential Guard was supposed to end credential dumping. It didn't.
Valdemar Carøe just dropped a new blog post detailing techniques for extracting credentials on fully patched Windows 11 & Server 2025 with modern protections enabled.
Read for more: ghst.ly/4qtl2rm
Valdemar Carøe just dropped a new blog post detailing techniques for extracting credentials on fully patched Windows 11 & Server 2025 with modern protections enabled.
Read for more: ghst.ly/4qtl2rm
@reconmtl.bsky.social has uploaded the majority of the 2025 talks, including my talk on LSA. You can check it out at the below link if you'd like.
Thank you again to the organizers and everyone else who helps put on the conference. I look forward to coming back!
youtu.be/G2CfMWXLU1U?...
Thank you again to the organizers and everyone else who helps put on the conference. I look forward to coming back!
youtu.be/G2CfMWXLU1U?...
Recon 2025 - The Finer Details of LSA Credential Recovery
YouTube video by Recon Conference
youtu.be
October 16, 2025 at 3:34 PM
@reconmtl.bsky.social has uploaded the majority of the 2025 talks, including my talk on LSA. You can check it out at the below link if you'd like.
Thank you again to the organizers and everyone else who helps put on the conference. I look forward to coming back!
youtu.be/G2CfMWXLU1U?...
Thank you again to the organizers and everyone else who helps put on the conference. I look forward to coming back!
youtu.be/G2CfMWXLU1U?...
Thank you to everyone who came to my REcon presentation yesterday and to the conference organizers for planning everything!
The slides for the presentation are hosted here if anyone would like them as a reference:
github.com/EvanMcBroom/...
The slides for the presentation are hosted here if anyone would like them as a reference:
github.com/EvanMcBroom/...
GitHub - EvanMcBroom/presentations: My presentations from different computer security conferences
My presentations from different computer security conferences - EvanMcBroom/presentations
github.com
June 29, 2025 at 4:24 PM
Thank you to everyone who came to my REcon presentation yesterday and to the conference organizers for planning everything!
The slides for the presentation are hosted here if anyone would like them as a reference:
github.com/EvanMcBroom/...
The slides for the presentation are hosted here if anyone would like them as a reference:
github.com/EvanMcBroom/...
The perfect loader library was updated this week to support changes made on Windows 11 24H2. A big thank you to Jarrod Davis (@tinybiggames.com) for reporting the issue and helping work on a solution!
A full writeup on the issues and fixes can be found here:
github.com/EvanMcBroom/...
A full writeup on the issues and fixes can be found here:
github.com/EvanMcBroom/...
Windows 11 24H2 · Issue #1 · EvanMcBroom/perfect-loader
Hi, will this work in windows 24H2?
github.com
January 8, 2025 at 7:08 PM
The perfect loader library was updated this week to support changes made on Windows 11 24H2. A big thank you to Jarrod Davis (@tinybiggames.com) for reporting the issue and helping work on a solution!
A full writeup on the issues and fixes can be found here:
github.com/EvanMcBroom/...
A full writeup on the issues and fixes can be found here:
github.com/EvanMcBroom/...