CS fails to fix CMD bug b4 test TL blocked Undetected C2 Channel Austin reverses payload PT asks to disable TL Dev PC pwn Falls for file share honeypot Undetected until DA (Austin eats his shoe) Unblocked LOLBAS Pentester doxed (hi trevor) TL zeroday :) Custom KQL catches recon Damnit Macros User cred in file share CS zeroday :( Pentest happens while BT at defcon Identify attacker infrastructure BYOVD (uncaught) DA obtained Credential found via responder Privesc Banned within 1 hour of test Falls for sysvol canary Rickrolled by antiresponder CS fails to fix CMD bug b4 test TL blocked Undetected C2 Channel Austin reverses payload PT asks to disable TL Dev PC pwn Falls for file share honeypot Undetected until DA (Austin eats his shoe) Unblocked LOLBAS Pentester doxed (hi trevor) TL zeroday :) Custom KQL catches recon Damnit Macros User cred in file share CS zeroday :( Pentest happens while BT at defcon Identify attacker infrastructure BYOVD (uncaught) DA obtained Credential found via responder Privesc Banned within 1 hour of test Falls for sysvol canary Rickrolled by antiresponder
(Print)
CS fails to fix CMD bug b4 test
TL blocked
Undetected C2 Channel
Austin reverses payload
PT asks to disable TL
Dev PC pwn
Falls for file share honeypot
Undetected until DA (Austin eats his shoe)
Unblocked LOLBAS
Pentester doxed (hi trevor)
TL zeroday :)
Custom KQL catches recon
Damnit Macros
User cred in file share
CS zeroday :(
Pentest happens while BT at defcon
Identify attacker infrastructure
BYOVD (uncaught)
DA obtained
Credential found via responder
Privesc
Banned within 1 hour of test
Falls for sysvol canary
Rickrolled by antiresponder
