Golden Ticket Attack: Exploiting Kerberos from Linux

2025-10-30 3 min read Cybersecurity Penetration Testing Windows Exploitation

Explore how to execute a full Golden Ticket attack on Active Directory using Linux tools. Includes practical, field-proven Impacket command examples and focuses on technical accuracy for red team and security professionals. Continue reading

Using Burp with Containers In Docker

2025-02-08 3 min read Cybersecurity Ethical Hacking Penetration Testing DevSecOps Web Security Docker

Making Docker Containers Trust Burp Suite’s CA for Testing

When testing applications running inside Docker containers, intercepting traffic with Burp Suite can be challenging because containers don’t automatically trust Burp’s CA certificate. Without trust, HTTPS requests from inside the container will fail with certificate errors.

In this post, I’ll show you how to:

Add Burp Suite’s CA to your host system
Pass the trusted CA to Docker containers
Ensure seamless HTTPS traffic interception for testing

Let’s get started!

What's New in Nmap: A Look at the Latest Features

2024-10-27 3 min read Security Networking Tools

Introduction

The Nmap (Network Mapper) tool has long been a favorite among cybersecurity professionals and network administrators for its robust scanning capabilities. Whether you’re performing a network inventory, managing service upgrades, or simply checking for potential vulnerabilities, Nmap is an indispensable tool.

With the latest release (v7.95) released on 2024/April/23, Nmap continues to evolve, adding new features, improving performance, and expanding its capabilities. In this post, we’ll take a look at the most notable changes and enhancements that come with the latest version.