Blog

  • Lares Labs
  • No Comments

Outlook 365 for the PWN
Outlook 365 for the PWN 1200 630 Lares Labs
Outlook 365 for the PWN shows how an attacker can chain built in tools like PowerShell, Word macros, and Outlook COM automation to quietly enumerate domain users and exfiltrate data over email, then closes with practical macro hardening steps in GPO and Endpoint Manager to help defenders get ahead of this tradecraft. read more
  • Lares Labs
  • No Comments

Red Team 101 – An Introduction
Red Team 101 – An Introduction 1200 630 Lares Labs
Red Team 101 explains how Lares uses objective based, adversary emulation exercises to test whether mature security programs can detect, investigate, and contain real-world attacks across social, physical, and electronic attack surfaces. read more
  • Lares Labs
  • No Comments

The Lowdown on Lateral Movement
The Lowdown on Lateral Movement 1200 630 Lares Labs
Defenders think in lists, but attackers think in graphs. In this post, the Lares Labs team breaks down the mechanics of lateral movement and explores how you can leverage Symmetrical Task Framing to outmaneuver threat actors navigating your network. read more

How Lares Thinks About Mythos-Class AI in Offensive Security
How Lares Thinks About Mythos-Class AI in Offensive Security 1200 630 Andrew Heller
Mythos-class AI is changing how vulnerabilities are found, not replacing real adversaries. Learn how Lares views Mythos, AI-assisted testing, and what security teams should do next. read more

What We Look For in a Penetration Tester at Lares (And Why Clients Care)
What We Look For in a Penetration Tester at Lares (And Why Clients Care) 1200 630 Andrew Heller
What is the difference between a standard security report and a true adversarial assessment? It all comes down to the operators. See what we look for at Lares. read more

The TTX + TTP Replay FAQ: Executive and Practitioner Guide to Evidence-Backed Cyber Defense Validation
The TTX + TTP Replay FAQ: Executive and Practitioner Guide to Evidence-Backed Cyber Defense Validation 150 150 Andrew Heller
Stop guessing and start proving. Explore our comprehensive FAQ to learn how integrating Tabletop Exercises (TTX) and live-fire TTP Replay exposes detection gaps, validates security investments, and builds an evidence-backed cyber defense. read more

The Top 5 Security Threats CISOs Actually Care About in 2026
The Top 5 Security Threats CISOs Actually Care About in 2026 1200 630 Andrew Heller
This report breaks down five practical threat categories impacting CISOs in 2026, from Agentic AI to Deepfake fraud, that Lares adversarial engineers encounter in the wild. read more

Audit Success vs Operational Resilience: Understanding the Gap
Audit Success vs Operational Resilience: Understanding the Gap 150 150 Andrew Heller

Compliance is a necessary part of enterprise security. It provides structure, accountability, and a baseline for control maturity. But compliance is not security. Passing an audit confirms that controls exist.…

read more

Purple Teaming: The Fastest Way to Improve Detection and Response
Purple Teaming: The Fastest Way to Improve Detection and Response 150 150 Andrew Heller

Many organizations assume their detections will activate during a real intrusion. Yet when Lares runs adversary simulations, we routinely observe well-managed environments failing to detect privilege escalation, cloud role misuse,…

read more

From Low-Value Identity to High-Value Impact: A Realistic Attack Chain
From Low-Value Identity to High-Value Impact: A Realistic Attack Chain 150 150 Andrew Heller
A simple identity compromise can escalate into full cloud or data access. See a realistic attack chain and what it means for enterprise security teams. read more

Where There is Unity, There is Victory

[Ubi concordia, ibi victoria]

– Publius Syrus

Contact Lares Consulting logo (image)

Continuous defensive improvement through adversarial simulation and collaboration.

Call Us

(720) 600-0329

Email Us

sales@lares.com

©2025 Lares, a Damovo Company | All rights reserved.
Enter your
text here