Red Teaming Archives

Lares Labs
June 4, 2026
No Comments

Outlook 365 for the PWN

Outlook 365 for the PWN https://www.lares.com/wp-content/uploads/2026/06/blog-backgroundoutlook.png 1200 630 Lares Labs Lares Labs https://www.lares.com/wp-content/plugins/ultimate-member/assets/img/default_avatar.jpg June 4, 2026 June 4, 2026

Outlook 365 for the PWN shows how an attacker can chain built in tools like PowerShell, Word macros, and Outlook COM automation to quietly enumerate domain users and exfiltrate data over email, then closes with practical macro hardening steps in GPO and Endpoint Manager to help defenders get ahead of this tradecraft. read more

Lares Labs
June 3, 2026
No Comments

Living Off The Land – Built-In Pwning

Living Off The Land – Built-In Pwning https://www.lares.com/wp-content/uploads/2026/06/blog-backgroundlotl.png 1200 630 Lares Labs Lares Labs https://www.lares.com/wp-content/plugins/ultimate-member/assets/img/default_avatar.jpg June 3, 2026 June 3, 2026

Living Off The Land – Built-In Pwning walks through how adversaries can use native Windows capabilities like PowerShell Get-CimInstance and ADSI Searcher to quietly enumerate domain groups, users, passwords in description fields, and remote administration paths such as WinRM and SMB, all without dropping additional tooling on disk. read more

Lares Labs
June 1, 2026
No Comments

Red Team 101 – An Introduction

Red Team 101 – An Introduction https://www.lares.com/wp-content/uploads/2026/06/blog-backgroundred.png 1200 630 Lares Labs Lares Labs https://www.lares.com/wp-content/plugins/ultimate-member/assets/img/default_avatar.jpg June 1, 2026 June 1, 2026

Red Team 101 explains how Lares uses objective based, adversary emulation exercises to test whether mature security programs can detect, investigate, and contain real-world attacks across social, physical, and electronic attack surfaces. read more

Lares Labs
May 28, 2026
No Comments

The Lowdown on Lateral Movement

The Lowdown on Lateral Movement https://www.lares.com/wp-content/uploads/2026/05/lateral-movement-blog-background2.png 1200 630 Lares Labs Lares Labs https://www.lares.com/wp-content/plugins/ultimate-member/assets/img/default_avatar.jpg May 28, 2026 May 28, 2026

Defenders think in lists, but attackers think in graphs. In this post, the Lares Labs team breaks down the mechanics of lateral movement and explores how you can leverage Symmetrical Task Framing to outmaneuver threat actors navigating your network. read more

Andrew Heller
May 26, 2026
No Comments

How Lares Thinks About Mythos-Class AI in Offensive Security

How Lares Thinks About Mythos-Class AI in Offensive Security https://www.lares.com/wp-content/uploads/2026/05/blog-background-blank-1.png 1200 630 Andrew Heller Andrew Heller https://www.lares.com/wp-content/plugins/ultimate-member/assets/img/default_avatar.jpg May 26, 2026 May 29, 2026

Mythos-class AI is changing how vulnerabilities are found, not replacing real adversaries. Learn how Lares views Mythos, AI-assisted testing, and what security teams should do next. read more

Andrew Heller
May 15, 2026
No Comments

What We Look For in a Penetration Tester at Lares (And Why Clients Care)

What We Look For in a Penetration Tester at Lares (And Why Clients Care) https://www.lares.com/wp-content/uploads/2026/05/blog-background-blank.png 1200 630 Andrew Heller Andrew Heller https://www.lares.com/wp-content/plugins/ultimate-member/assets/img/default_avatar.jpg May 15, 2026 May 15, 2026

What is the difference between a standard security report and a true adversarial assessment? It all comes down to the operators. See what we look for at Lares. read more

Andrew Heller
March 17, 2026
No Comments

WEBINAR: OWASP Agentic AI Top 10: Threats in the Wild

WEBINAR: OWASP Agentic AI Top 10: Threats in the Wild https://www.lares.com/wp-content/themes/movedo/images/empty/thumbnail.jpg 150 150 Andrew Heller Andrew Heller https://www.lares.com/wp-content/plugins/ultimate-member/assets/img/default_avatar.jpg March 17, 2026 March 17, 2026

Artificial intelligence is no longer just answering our questions. It is taking action. We have moved from simple chatbots to Agentic AI applications that can reason, plan, invoke external tools,…

WEBINAR: Stop Guessing, Start Proving: Why You Should Combine TTX and TTP Replay

WEBINAR: Stop Guessing, Start Proving: Why You Should Combine TTX and TTP Replay https://www.lares.com/wp-content/themes/movedo/images/empty/thumbnail.jpg 150 150 Andrew Heller Andrew Heller https://www.lares.com/wp-content/plugins/ultimate-member/assets/img/default_avatar.jpg March 2, 2026 March 2, 2026

Watch our Lares webinar to learn why combining Tabletop Exercises (TTX) with TTP Replay is the ultimate win-win for evidence-backed security testing. read more

Andrew Heller
March 2, 2026
No Comments

The TTX + TTP Replay FAQ: Executive and Practitioner Guide to Evidence-Backed Cyber Defense Validation

The TTX + TTP Replay FAQ: Executive and Practitioner Guide to Evidence-Backed Cyber Defense Validation https://www.lares.com/wp-content/themes/movedo/images/empty/thumbnail.jpg 150 150 Andrew Heller Andrew Heller https://www.lares.com/wp-content/plugins/ultimate-member/assets/img/default_avatar.jpg March 2, 2026 March 2, 2026

Stop guessing and start proving. Explore our comprehensive FAQ to learn how integrating Tabletop Exercises (TTX) and live-fire TTP Replay exposes detection gaps, validates security investments, and builds an evidence-backed cyber defense. read more

Andrew Heller
February 10, 2026
No Comments

The Top 5 Security Threats CISOs Actually Care About in 2026

The Top 5 Security Threats CISOs Actually Care About in 2026 https://www.lares.com/wp-content/uploads/2026/02/top-5-blankblog-background.png 1200 630 Andrew Heller Andrew Heller https://www.lares.com/wp-content/plugins/ultimate-member/assets/img/default_avatar.jpg February 10, 2026 May 13, 2026

This report breaks down five practical threat categories impacting CISOs in 2026, from Agentic AI to Deepfake fraud, that Lares adversarial engineers encounter in the wild. read more

Red Teaming