🟣 In this week’s Weekly Purple Team episode, threat actors are flipping the script—using EDR tools against defenders.

Yep, it’s EDR on EDR violence.

Learn how they’re doing it & how to fight back: youtu.be/CbD8b3h4me4

#CyberSecurity #EDR #BlueTeam #Infosec #ThreatIntel #PurpleTeam #BYOVEDR

🔥 On this week's episode of The Weekly Purple Team, we cover Golden dMSA, a new stealthy technique for forest-wide persistence — and it's pretty nasty.
🎥 Watch now: youtu.be/-3PpxuKP7wQ

#TheWeeklyPurpleTeam #GoldenDMSA #PurpleTeam #RedTeam #BlueTeam #CyberSecurity #DFIR #WindowsSecurity

🚨 New on The Weekly Purple Team:
We deep dive BadSuccessor
See how the attack works + how to detect it in the real world.
🎥 youtu.be/IWP-8IMzQU8
🔍 Based on research by @Akamai
#PurpleTeam #BadSuccessor #ActiveDirectory #RedTeam #BlueTeam #CyberSecurity #DetectionEngineering

I just learned threat actors are weaponizing WDAC like I showed in one of my videos. Check it out, learn how to protect yourself. Weaponizing Windows Allow Listing (WDAC) To Kill EDR youtu.be/C8qSli2uaa4

In this week’s episode of “The Weekly Purple Team,” we deep-dive into CVE-2025-24054, which can be exploited by unzipping or touching a library-ms file. Threat actors have actively exploited this vulnerability, which is relatively novel. Check it out!
youtu.be/d06oveNhIYo

🚨 Heard of Data Bouncing?
This week’s “The Weekly Purple Team” episode discusses data bouncing. Bouncing data off legitimate servers for exfiltration
Learn more & stay ahead of the threat: 🎥 Watch here youtu.be/oMmB7mi7KRk

#CyberSecurity #Infosec

In this week's video, I played around with the most recent 7zip vulnerability, CVE-2025-0411, and showed you how to use it to bypass Smartscreen and detect its usage. Threat actors use this technique, so please make sure you know how it works. youtu.be/sav4k-8lN0o

In this week’s video, I explain Kerberos relaying to Active Directory Certificate Services (ADCS), a powerful attack technique that can be used for privilege escalation and persistence in Active Directory environments.
youtu.be/Jzm2vzhEANM

Yeah I posted the wrong link here is the correct one. Getting by EDR with Amnesiac
youtu.be/btAUBgeUiAg

This is a first for me. I found a tool via an intrusion that gets by several EDRs I tested. Here is a video about it. I show how it gets by Defender like a knife through butter. youtu.be/FhJpfWZ6NQA

The project is Amnesiac github.com/Leo4j/Amnesiac.

🔥 CVE-2024-0012 just landed in Metasploit! Ready to level up your #PurpleTeam game? 🛡️ Let's run an attack demo and dive into detection strategies to keep your defenses sharp. 💥 #CyberSecurity #ThreatHunting
youtu.be/RgSGjn_Z1dg

Did you know adversaries are abusing Cloudflare for tunneling traffic? Cloudflared, which used to be Argo Tunnels, is being actively used by adversaries, much like NGROK and other mechanisms. Here is the attack and the detection of Cloudflare tunneling. youtu.be/JC1hIppKLhI

❓ Does Multifactor Phishing Work in 2024? ❓
Yes, and it’s a growing threat. Multifactor phishing involves techniques like stealing credentials and session tokens through MiTM phishing attacks. Let me show you how attackers do this!
youtu.be/CNyzGUY3Ujk

This is my first BlueSky Social post! I examined VBA to determine whether it was still a threat after Microsoft clamped down on VBA coming from the Internet. Spoiler Alert! It still is. #CyberSecurity #Hacking #VBA

youtu.be/onSQdTnWVJg