David McGuire's Avatar

David McGuire

@davidmcguire.bsky.social

CEO @specterops.bsky.social

72 Followers  |  32 Following  |  2 Posts  |  Joined: 29.10.2024  |  1.684

Latest posts by davidmcguire.bsky.social on Bluesky

Recon 2025 - The Finer Details of LSA Credential Recovery
YouTube video by Recon Conference Recon 2025 - The Finer Details of LSA Credential Recovery

@reconmtl.bsky.social has uploaded the majority of the 2025 talks, including my talk on LSA. You can check it out at the below link if you'd like.

Thank you again to the organizers and everyone else who helps put on the conference. I look forward to coming back!
youtu.be/G2CfMWXLU1U?...

16.10.2025 15:34 β€” πŸ‘ 8    πŸ” 4    πŸ’¬ 0    πŸ“Œ 0
Video thumbnail

BloodHound v8.0 is here! πŸŽ‰

This update introduces BloodHound OpenGraph, revolutionizing Identity Attack Path Management by exposing attack paths throughout your entire tech stack, not just AD/Entra ID.

Read more from Justin Kohler: ghst.ly/bloodhoundv8

🧡: 1/7

29.07.2025 13:13 β€” πŸ‘ 13    πŸ” 9    πŸ’¬ 1    πŸ“Œ 1
Preview
Escaping the Confines of Port 445 - SpecterOps NTLM relay attacks targeting SMB restrict lateral movement options to those that solely require port 445/TCP. Learn at least one method of overcoming this restriction to enable additional lateral move...

Classic NTLM relay problem: Stuck on port 445/TCP, can't use WMI (needs 135/TCP), and dumping hashes triggers EDR alerts.

So what's a stealthy attacker to do? πŸ€”

Our latest blog post explores evasive alternatives beyond the old techniques. ghst.ly/3ILR1l0

25.07.2025 00:02 β€” πŸ‘ 8    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0
Preview
Make Sure to Use SOAP(y) - An Operators Guide to Stealthy AD Collection Using ADWS - SpecterOps Learn how to perform stealthy recon of Active Directory environments over ADWS for Red Team Assessments

@logangoins.bsky.social is dropping knowledge on ADWS exploitation. 🧠

Learn how attackers use the SOAP protocol for LDAP collection on Domain Controllers & dive into maximizing OPSEC-considerate collection workflows while exploring detection methods. ghst.ly/4lPodH4

25.07.2025 16:19 β€” πŸ‘ 6    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Preview
Understanding & Mitigating BadSuccessor - SpecterOps Understanding the impact of the BadSuccessor AD attack primitive and mitigating the abuse via targeted Deny ACEs on Organizational Units.

BadSuccessor is a new AD attack primitive that abuses dMSAs, allowing an attacker who can modify or create a dMSA to escalate privileges and take over the forest.

Check out @jimsycurity.adminsdholder.com's latest blog post to understand how you can mitigate risk. ghst.ly/4kXTLd9

27.05.2025 21:11 β€” πŸ‘ 16    πŸ” 9    πŸ’¬ 0    πŸ“Œ 1
Post image

We're proud to sponsor BSides Groningen, happening today. Find our team at the event and say hi! πŸ‘‹

02.05.2025 11:48 β€” πŸ‘ 4    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Post image

Think NTLM relay is a solved problem? Think again.

Relay attacks are more complicated than many people realize. Check out this deep dive from Elad Shamir on NTLM relay attacks & the new edges we recently added to BloodHound. ghst.ly/4lv3E31

08.04.2025 23:00 β€” πŸ‘ 27    πŸ” 20    πŸ’¬ 1    πŸ“Œ 2
Post image

Our team is at #GartnerIAM! Come find our team at Booth 407. πŸ”

Talk with Specters about BloodHound Enterprise, our open source tools, and get answers on Identity Attack Path Management.

24.03.2025 11:53 β€” πŸ‘ 2    πŸ” 1    πŸ’¬ 1    πŸ“Œ 0
Post image

Attackers see what you don't: paths between your cloud & on-prem systems.

Our Chief Product Officer Justin Kohler will be at #GartnerIAM demonstrating how attackers exploit these connections & how Attack Path Management can help close these gaps. ghst.ly/4kzkFbB

20.03.2025 13:26 β€” πŸ‘ 4    πŸ” 3    πŸ’¬ 0    πŸ“Œ 0
Post image

Hear how State Street Bank tackled #identitysecurity compliance using the adversary’s view of #AttackPaths. Join Justin Kohler & State Street's Eric McGuffin at #FSISAC as they unpack the process & tools used to secure AD & Azure.

Learn more ▢️ ghst.ly/3D61s0s

28.02.2025 18:21 β€” πŸ‘ 0    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Preview
Fueling the Fight Against Identity Attacks - SpecterOps When we founded SpecterOps, one of our core principles was to build a company which brought unique insight into high-capability adversary tradecraft, constantly innovating in research and tooling. We ...

Thrilled to announce @specterops.bsky.social has raised Series B funding to tackle Identity Attack Paths! Identity security matters more now than ever. And we're just getting started.

Read more: ghst.ly/seriesb-blog

05.03.2025 17:32 β€” πŸ‘ 5    πŸ” 1    πŸ’¬ 0    πŸ“Œ 0
Post image

Our Consulting Services team is growing! πŸ™Œ

We are now hiring Consultants and Senior Consultants to join the team as operators, trainers, and program developers.

Learn more & apply today! ghst.ly/3PBmGFZ

16.01.2025 14:06 β€” πŸ‘ 5    πŸ” 3    πŸ’¬ 1    πŸ“Œ 2
Video thumbnail

What can you expect to learn in our Azure Security Fundamentals training at #SOCON2025? Course architect
@1cemoon.bsky.social shares that students will dive into:

➑️ Azure Resource Manager
➑️ Common security misconfigurations
➑️ Entra ID authentication

Register today: ghst.ly/reg-socon25-...

11.12.2024 20:27 β€” πŸ‘ 2    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0
Post image

Good news, BloodHound users! πŸŽ‰

We’ve rolled out v6.3 with new features & improvements to help you visualize #AttackPaths more clearly & show progress in reducing identity risks over time. Check out Justin Kohler's blog post to learn more: ghst.ly/49wB23L

12.12.2024 17:05 β€” πŸ‘ 5    πŸ” 2    πŸ’¬ 0    πŸ“Œ 0
Preview
FedRAMP High Authorization for BloodHound Enterprise is a Critical Win for the Public Sector - SpecterOps Author: David McGuire, CEO, SpecterOpsΒ  Today, we’re thrilled to announce that SpecterOps has earned FedRAMP High Authorization for BloodHound Enterprise! This is no small achievement, as it makes our...

Proud to share that SpecterOps has earned FedRAMP High Authorization for BloodHound Enterprise! Government agencies are at high risk for identity-based attacks, and now BHE is available to those that operate at the FedRAMP High baseline.

Learn more: ghst.ly/bhe-fedramp-...

05.12.2024 18:19 β€” πŸ‘ 1    πŸ” 0    πŸ’¬ 0    πŸ“Œ 0
Post image

A quick tour of new functions in BARK that support Azure Key Vault tradecraft research, including a walk-through of how an adversary may chain these functions together as part of an attack path: posts.specterops.io/azure-key-va...

20.11.2024 17:44 β€” πŸ‘ 17    πŸ” 8    πŸ’¬ 0    πŸ“Œ 0
Adversary Tactics: Red Team Operations December 9-12, 2024 Black Hat Europe

Adversary Tactics: Red Team Operations December 9-12, 2024 Black Hat Europe

Our RTO course is going to London! πŸ‡¬πŸ‡§

Join our training at #BHEU December 9-12, and test your offensive skills in a hardened enterprise environment with live defenders hunting you down.

Learn more & register πŸ‘‰ ghst.ly/4hT39xN

20.11.2024 22:13 β€” πŸ‘ 3    πŸ” 1    πŸ’¬ 1    πŸ“Œ 0

@davidmcguire is following 20 prominent accounts