Compass Security Blog

Offensive Defense

Bypassing BitLocker Encryption: Bitpixie PoC and WinPE Edition

Depending on the customer’s preference, possible initial access vectors in our red teaming exercises typically include deployment of dropboxes, (device code) phishing or a stolen portable device. The latter is usually a Windows laptop protected by BitLocker for full disk encryption without pre-boot authentication i.e. without a configured PIN or an additional key file. While […]

Continue reading

Stealthy AD CS Reconnaissance

Introducing a certipy parse command to perform stealthy offline AD CS enumeration based on local registry data.

Continue reading