If you’re anything like me and/or an offensive security professional, you’re probably very, very familiar with NTLM relaying attacks against Active Directory environments. NTLM relay attacks are anything but novel; pentesters and hackers alike have been forcing blue teams and sysadmins all around the world for decades to pull their hair out as they attempt...Read More

Like many other pentesters and offensive security professionals out there, we’ve been getting a ton of mileage out of CVE-2025-33073. Microsoft describes this vulnerability as “Improper access control in Windows SMB allows an authorized attacker to elevate privileges over a network.”Read More