https://r4ulcl.com/categories/red-team/ Recent content in Red Team on r4ulcl Hugo -- gohugo.io en Thu, 22 Jan 2026 00:00:00 +0100 https://r4ulcl.com/posts/passing-the-osep-exam-using-mythic-c2/ Thu, 22 Jan 2026 00:00:00 +0100 https://r4ulcl.com/posts/passing-the-osep-exam-using-mythic-c2/ Introduction and starting point Link to heading This post documents my experience passing the OSEP (OffSec Experienced Penetration Tester) exam using Mythic C2 as my main command-and-control framework. The goal is not to provide a step-by-step walkthrough of the exam, but to explain how I prepared, why I chose Mythic, and how I structured my tooling and mindset to survive the exam. For some context, it took me around 13 hours to complete 100% of the exam, including both ways to obtain the secret. https://r4ulcl.com/posts/getting-started-with-mythic-c2/ Fri, 19 Dec 2025 00:00:00 +0100 https://r4ulcl.com/posts/getting-started-with-mythic-c2/ What is Mythic C2 Link to heading Mythic C2 is a modular command-and-control framework with a GUI and API to generate payloads, run listeners, and manage multi-user operations. Orchestrate agent behavior without gluing together extra utilities so you can focus on red-team engagements instead of connections and tools. Why I like it: Modular: You can swap agents, C2 profiles, and plugins without ripping the system apart. GUI + API: There is a friendly web interface for quick work, plus an API for automation and integrations. https://r4ulcl.com/posts/essid-stripping/ Thu, 27 Apr 2023 17:30:00 +0200 https://r4ulcl.com/posts/essid-stripping/ How to create a RogueAP that looks identical to legitimate networks but clients use the default settings. Link to heading Table Of Contents What is a RogueAP? What is ESSID Stripping exactly? When to use it? How to use it? Using the attack with hostapd Using the attack with original Eaphammer (only white space) Using the attack with eaphammer modification (space, new line or tab) How to protect yourself? References In September 2021, the AirEye research team, in collaboration with the Computer Science faculty at the Technion - 2013 Israel Institute of Technology, identified a potential attack vector in Wi-Fi networks known as the ESSID (Extended Service Set Identifier) Stripping vulnerability.