Nairuz Abulhul – Medium

Nairuz Abulhul
in
InfoSec Write-ups

Red Teaming with Azure: Building C2 Infrastructure with Azure VMs

A Step-by-Step Guide to Deploying C2 VMs

10 min read1 day ago

--

Red Teaming with Azure: Building C2 Infrastructure with Azure VMs

--

Nairuz Abulhul
in
R3d Buck3T

Adding Certificates to Postman & Burp Suite for API Testing

Testing APIs with Certificate-based authentication

4 min readApr 30, 2024

--

Adding Certificates to Postman & Burp Suite for API Testing

--

Nairuz Abulhul
in
InfoSec Write-ups

Exploiting Misconfigurations in Windows Service Permissions

A Closer Look at Common Misconfigurations in Windows Service Permissions for Privilege Escalation

7 min readJan 16, 2024

--

Exploiting Misconfigurations in Windows Service Permissions

--

Nairuz Abulhul
in
R3d Buck3T

Red Teaming in Cloud: Leverage Azure FrontDoor CDN for C2 Redirectors

Evading Detection: Obfuscating C2 Infrastructure with Azure FrontDoor

10 min readJan 11, 2024

--

Red Teaming in Cloud: Leverage Azure FrontDoor CDN for C2 Redirectors

--

Nairuz Abulhul
in
R3d Buck3T

Abusing Dynamic Groups in AzureAD [Part 1]

Leveraging Dynamic Groups for Elevated Privileges

10 min readJan 4, 2024

--

Abusing Dynamic Groups in AzureAD [Part 1]

--

Nairuz Abulhul
in
R3d Buck3T

Red Teaming in the Cloud: Installing Mythic C2 on Azure VM

C2 Deployment and Operations — Infrastructure

9 min readDec 26, 2023

--

Red Teaming in the Cloud: Installing Mythic C2 on Azure VM

--

Nairuz Abulhul
in
R3d Buck3T

Red Teaming in the Cloud: Deploying Azure VMs for C2 Infrastructure

A Guide to Deploying Red Team Infrastructure on Azure

10 min readDec 15, 2023

--

Red Teaming in the Cloud: Deploying Azure VMs for C2 Infrastructure

--

Nairuz Abulhul
in
InfoSec Write-ups

Elevating Privileges with SeBackupPrivilege on Windows

Once we gain initial access to a system during an internal penetration testing assessment, the next step is to escalate privileges in order…

7 min readDec 7, 2023

--

Elevating Privileges with SeBackupPrivilege on Windows

--

Nairuz Abulhul
in
R3d Buck3T

Virtual Host Enumeration for Uncovering Hidden Subdomains

Tools and Techniques for efficient virtual host discovery

8 min readNov 28, 2023

--

Virtual Host Enumeration for Uncovering Hidden Subdomains

--

Nairuz Abulhul
in
R3d Buck3T

CrackMapExec in Action: Enumerating Windows Networks (Part 2)

Strategically Mapping Targets inside the Internal Network

8 min readSep 27, 2023

--

CrackMapExec in Action: Enumerating Windows Networks (Part 2)

--

Nairuz Abulhul

Nairuz Abulhul

I spend 70% of the time reading security stuff and 30% trying to make it work !!! aka Pentester [+] Publication: R3d Buck3T

Following

Help
Status
About
Careers
Blog
Privacy
Terms
Text to speech
Teams