{"version":1,"pages":[{"id":"5TEPIBT6Ngy0ygFQAf3f","title":"레드팀 플레이북","pathname":"/","siteSpaceId":"sitesp_L0Eo4","description":""},{"id":"RUQolJE9VNbpesGbll36","title":"레드팀이란","pathname":"/what-even-is-redteam","siteSpaceId":"sitesp_L0Eo4","description":""},{"id":"ea8Ezz4lO8imBaoXNYla","title":"레드팀 글로벌 동향 (2024)","pathname":"/redteam-global-trend-2024","siteSpaceId":"sitesp_L0Eo4"},{"id":"5GXCqJ65p2c1qzO8Fdct","title":"개요","pathname":"/basic-redteam/overview","siteSpaceId":"sitesp_L0Eo4","breadcrumbs":[{"label":"베이직 레드팀(Basic Redteam)"}]},{"id":"VFDeEEDPKhIqlj31M6hM","title":"1. 공격자 인프라 구성","pathname":"/basic-redteam/1-attacker-infra","siteSpaceId":"sitesp_L0Eo4","breadcrumbs":[{"label":"베이직 레드팀(Basic Redteam)"}]},{"id":"XTRNU4HRt5ZXQKSh5d14","title":"2. 초기 침투","pathname":"/basic-redteam/2-initial-access","siteSpaceId":"sitesp_L0Eo4","breadcrumbs":[{"label":"베이직 레드팀(Basic Redteam)"}]},{"id":"cozaRusZqUHVpFFRokl7","title":"3. 정보 수집","pathname":"/basic-redteam/3-enumeration","siteSpaceId":"sitesp_L0Eo4","breadcrumbs":[{"label":"베이직 레드팀(Basic Redteam)"}]},{"id":"5a2ZzQsXAks3i0WvzNri","title":"4. 권한 상승 - US","pathname":"/basic-redteam/privesc-us-domain","siteSpaceId":"sitesp_L0Eo4","breadcrumbs":[{"label":"베이직 레드팀(Basic Redteam)"}]},{"id":"5XLGtoIcxu7gBYLGFqg6","title":"5. 횡적 이동: USWKSTN01 -> SQL01","pathname":"/basic-redteam/5-lateralmovement-to-sql01","siteSpaceId":"sitesp_L0Eo4","breadcrumbs":[{"label":"베이직 레드팀(Basic Redteam)"}]},{"id":"ETUsM3Or7yQGtc0cadLs","title":"6. 권한 상승 - SQL01","pathname":"/basic-redteam/6-privesc-sql01","siteSpaceId":"sitesp_L0Eo4","breadcrumbs":[{"label":"베이직 레드팀(Basic Redteam)"}]},{"id":"lpIFZ9un5tMtpCVuJvFl","title":"7. 도메인 장악 WEB01","pathname":"/basic-redteam/7-us-domain-compromise","siteSpaceId":"sitesp_L0Eo4","breadcrumbs":[{"label":"베이직 레드팀(Basic Redteam)"}]},{"id":"uvIV7NenzHvWq13KJqpD","title":"8. US -> RT 장악","pathname":"/basic-redteam/8-rt-forestrootdomain-compromise","siteSpaceId":"sitesp_L0Eo4","breadcrumbs":[{"label":"베이직 레드팀(Basic Redteam)"}]},{"id":"Xg2ay3evGvBmbTiSFXOp","title":"9. RT -> DEV 정보 수집","pathname":"/basic-redteam/9-rt-to-dev-enumeration","siteSpaceId":"sitesp_L0Eo4","breadcrumbs":[{"label":"베이직 레드팀(Basic Redteam)"}]},{"id":"izmLrct8CB9t7otbOu2f","title":"10. 권한 상승 및 목표 달성","pathname":"/basic-redteam/10-complete-mission","siteSpaceId":"sitesp_L0Eo4","breadcrumbs":[{"label":"베이직 레드팀(Basic Redteam)"}]},{"id":"SFGJ1EvibdkWrzLE4X6F","title":"개념","pathname":"/infrastructure/concepts","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"인프라 (Infrastructure)","emoji":"1f6a7"}]},{"id":"AirXMFy7MKOa9DgUw1tP","title":"예시 인프라","pathname":"/infrastructure/example-infra","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"인프라 (Infrastructure)","emoji":"1f6a7"}]},{"id":"2uEo6n0uqScQiA1knzyb","title":"팀 서버 - Sliver","pathname":"/infrastructure/sliver","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"인프라 (Infrastructure)","emoji":"1f6a7"}]},{"id":"hN2SWonDhUm846pZVX1L","title":"스테이저 (Stager) 사용","pathname":"/infrastructure/sliver/stager","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"인프라 (Infrastructure)","emoji":"1f6a7"},{"label":"팀 서버 - Sliver"}]},{"id":"0dNMMkmOKKJCTx3ZGr49","title":"도메인 분류와 신뢰도","pathname":"/infrastructure/domain-categorization-reputation","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"인프라 (Infrastructure)","emoji":"1f6a7"}]},{"id":"o7YHR0FkiORJbGn2sZ1W","title":"HTTP 리다이렉터","pathname":"/infrastructure/http-redirector","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"인프라 (Infrastructure)","emoji":"1f6a7"}]},{"id":"D0zGEUq5s5fs8Ce9uYcv","title":"HTTPS 리다이렉터","pathname":"/infrastructure/https-redirector","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"인프라 (Infrastructure)","emoji":"1f6a7"}]},{"id":"b6Vry8wYbmwKN0QrZDh5","title":"SMTP Gophish + Mail","pathname":"/infrastructure/smtp-do","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"인프라 (Infrastructure)","emoji":"1f6a7"}]},{"id":"N1GrCzweodBTSI9GCuUs","title":"SMTP Gophish + ESP","pathname":"/infrastructure/smtp-aws-zoho","siteSpaceId":"sitesp_L0Eo4","description":"본 실습은 레드팀 인프라에 꼭 필요한 SMTP 서버를 GoPhish 피싱 프레임워크와 ZoHo Third-party 메일 서비스를 활용해 AWS에서 설정하는 법을 다룬다.","breadcrumbs":[{"label":"인프라 (Infrastructure)","emoji":"1f6a7"}]},{"id":"FPMyz8oyui1f8kWmZ1Jr","title":"SMTP Gophish + Relay + ESP","pathname":"/infrastructure/smtp-toolkit-relay-esp","siteSpaceId":"sitesp_L0Eo4","breadcrumbs":[{"label":"인프라 (Infrastructure)","emoji":"1f6a7"}]},{"id":"iVwzBHFgg6kUDApcCjS2","title":"인프라 구축 자동화","pathname":"/infrastructure/infra-automation","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"인프라 (Infrastructure)","emoji":"1f6a7"}]},{"id":"nxuJDEreABJkyKi6BCio","title":"테라폼 (Terraform)","pathname":"/infrastructure/infra-automation/terraform","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"인프라 (Infrastructure)","emoji":"1f6a7"},{"label":"인프라 구축 자동화"}]},{"id":"itJVB1PQVaNTQlk47wui","title":"SMTP 테라폼 자동화","pathname":"/infrastructure/infra-automation/mail-terraform","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"인프라 (Infrastructure)","emoji":"1f6a7"},{"label":"인프라 구축 자동화"}]},{"id":"Qq0fnhlZwVicb4ppbQ5Z","title":"HTTPS 리다이렉터 자동화 (AWS)","pathname":"/infrastructure/infra-automation/https-redir-automation","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"인프라 (Infrastructure)","emoji":"1f6a7"},{"label":"인프라 구축 자동화"}]},{"id":"BpOlybAqVpfwcxBk4iau","title":"old-네뷸라를 이용한 인프라 구축","pathname":"/infrastructure/old","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"인프라 (Infrastructure)","emoji":"1f6a7"}]},{"id":"mzzw9luYTHovIcOVyfLp","title":"도메인과 리다이렉터 설정","pathname":"/infrastructure/old/domain-redirector-config","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"인프라 (Infrastructure)","emoji":"1f6a7"},{"label":"old-네뷸라를 이용한 인프라 구축"}]},{"id":"5gT8Pn8zZXzTP8iYuJ5g","title":"중립 공간 (클라우드) 설정","pathname":"/infrastructure/old/neutral-area-cloud-config","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"인프라 (Infrastructure)","emoji":"1f6a7"},{"label":"old-네뷸라를 이용한 인프라 구축"}]},{"id":"bSzvZ6yknuHsWu6ljfIb","title":"네뷸라 (Nebula)","pathname":"/infrastructure/old/nebula","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"인프라 (Infrastructure)","emoji":"1f6a7"},{"label":"old-네뷸라를 이용한 인프라 구축"}]},{"id":"UMhJmw3vrvXarAWINwlV","title":"네뷸라 설정","pathname":"/infrastructure/old/nebula-config","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"인프라 (Infrastructure)","emoji":"1f6a7"},{"label":"old-네뷸라를 이용한 인프라 구축"}]},{"id":"8UXU2lyH7mUOlibVDBXD","title":"도메인 프론팅 (Domain Fronting)","pathname":"/infrastructure/domain-fronting","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"인프라 (Infrastructure)","emoji":"1f6a7"}]},{"id":"CSBk6cgcTeRy7bSnLJhT","title":"도메인 프론팅 - Azure Edgio CDN","pathname":"/infrastructure/domain-fronting-azure-edgio-cdn","siteSpaceId":"sitesp_L0Eo4","description":"Akamai가 Edgio를 2024년 12월 인수하고, Edgio가 파산신청을 진행하며 이 도메인 프론팅은 2025/01/15 이후 더 이상 할 수 없다.","breadcrumbs":[{"label":"인프라 (Infrastructure)","emoji":"1f6a7"}]},{"id":"yUkQnkszlKuaz89fWvEo","title":"Cloudflared Tunnel과 Worker","pathname":"/infrastructure/cloudflared-tunnel-and-worker-redirector","siteSpaceId":"sitesp_L0Eo4","description":"이 문서는 Jumpsec Labs 블로그 글(https://labs.jumpsec.com/putting-the-c2-in-c2loudflare/)을 기반으로 쓰여졌습니다. 해당 글에서 부족한 부분 및 서비스 업데이트로 인해 deprecated된 요소를 디버깅 및 연구한 결과를 포함해 문서화 했습니다.","breadcrumbs":[{"label":"인프라 (Infrastructure)","emoji":"1f6a7"}]},{"id":"obhN1nz2tMcxRieIrUlm","title":"Cloudflared Tunnel과 Pages","pathname":"/infrastructure/cloudflared-tunnel-pages","siteSpaceId":"sitesp_L0Eo4","breadcrumbs":[{"label":"인프라 (Infrastructure)","emoji":"1f6a7"}]},{"id":"u8Y3vanND3wKOiu9bLpw","title":"개념","pathname":"/initial-recon/concept","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"초기 정찰","emoji":"1f50e"}]},{"id":"Wc52VOUKDlNTy9yey6fh","title":"타겟 발견","pathname":"/initial-recon/target-discovery","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"초기 정찰","emoji":"1f50e"}]},{"id":"AwY4yZ1oZAvLQjqmpKAc","title":"OSINT","pathname":"/initial-recon/osint","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"초기 정찰","emoji":"1f50e"}]},{"id":"Vrt1HIql7Uc6pYhMH7FJ","title":"작전보안","pathname":"/initial-recon/osint/opsec","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"초기 정찰","emoji":"1f50e"},{"label":"OSINT"}]},{"id":"E3wTHXZKYZlYtK53YEMD","title":"자산 정보 수집","pathname":"/initial-recon/osint/asset-discovery","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"초기 정찰","emoji":"1f50e"},{"label":"OSINT"}]},{"id":"ah8Le7XsvPXdTDvE87xW","title":"구글 도킹","pathname":"/initial-recon/osint/google-dorking","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"초기 정찰","emoji":"1f50e"},{"label":"OSINT"}]},{"id":"BhVgihZfjSBZGUASJ9H9","title":"개념","pathname":"/initial-access/concepts","siteSpaceId":"sitesp_L0Eo4","description":"MITRE ATTACK - A0001","breadcrumbs":[{"label":"초기 침투 (Initial Access)","emoji":"2694"}]},{"id":"CLPczYcHm4R1HUzaK6X4","title":"피싱 첨부파일","pathname":"/initial-access/phish-attachments","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"초기 침투 (Initial Access)","emoji":"2694"}]},{"id":"YKqy9e9O4rC9lkGY7lFe","title":"오피스 VBA 매크로","pathname":"/initial-access/phish-attachments/vba-macros","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"초기 침투 (Initial Access)","emoji":"2694"},{"label":"피싱 첨부파일"}]},{"id":"5feMLD8Lp08K0DEsAzb0","title":"XLM Excel 4.0 매크로","pathname":"/initial-access/phish-attachments/xlm-excel-40","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"초기 침투 (Initial Access)","emoji":"2694"},{"label":"피싱 첨부파일"}]},{"id":"q9pTuI9MhDDWVfLRw6uW","title":"원격 템플렛 인젝션","pathname":"/initial-access/phish-attachments/remote-template-injection","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"초기 침투 (Initial Access)","emoji":"2694"},{"label":"피싱 첨부파일"}]},{"id":"pB3TudMEBzVr6dr6oSPJ","title":"VBA Stomping","pathname":"/initial-access/phish-attachments/vba-stomping","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"초기 침투 (Initial Access)","emoji":"2694"},{"label":"피싱 첨부파일"}]},{"id":"tZ4ePUdOds5mmPRVNcap","title":"HTA","pathname":"/initial-access/phish-attachments/hta","siteSpaceId":"sitesp_L0Eo4","description":"T1218.005","breadcrumbs":[{"label":"초기 침투 (Initial Access)","emoji":"2694"},{"label":"피싱 첨부파일"}]},{"id":"B7Lnvlsdr17VGBaQyRme","title":"LNK","pathname":"/initial-access/phish-attachments/lnk","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"초기 침투 (Initial Access)","emoji":"2694"},{"label":"피싱 첨부파일"}]},{"id":"9IQ3W481pxErifnUmMcJ","title":"ISO","pathname":"/initial-access/phish-attachments/iso","siteSpaceId":"sitesp_L0Eo4","description":"T1553.005","breadcrumbs":[{"label":"초기 침투 (Initial Access)","emoji":"2694"},{"label":"피싱 첨부파일"}]},{"id":"O1aVm3nCsUcGmZ1OqciF","title":"VBA Purging - TODO","pathname":"/initial-access/phish-attachments/vba-purging","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"초기 침투 (Initial Access)","emoji":"2694"},{"label":"피싱 첨부파일"}]},{"id":"87bukY4VocVACnSLbKYQ","title":"DotNetToJS - TODO","pathname":"/initial-access/phish-attachments/dotnettojs","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"초기 침투 (Initial Access)","emoji":"2694"},{"label":"피싱 첨부파일"}]},{"id":"BzUckW1lMkJp8fFQQenN","title":"Follina - TODO","pathname":"/initial-access/phish-attachments/follina","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"초기 침투 (Initial Access)","emoji":"2694"},{"label":"피싱 첨부파일"}]},{"id":"LwaOWhB9RPtIXh66qwp5","title":"HTML 스머글링 (Smuggling)","pathname":"/initial-access/html-smuggling","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"초기 침투 (Initial Access)","emoji":"2694"}]},{"id":"Kos4KzypFdk1rD3fw8Vo","title":"피싱 - AitM (Adversary in the Middle)","pathname":"/initial-access/aitm","siteSpaceId":"sitesp_L0Eo4","description":"T1557","breadcrumbs":[{"label":"초기 침투 (Initial Access)","emoji":"2694"}]},{"id":"FmtwTiVl5n1cjrOBFu8e","title":"Living Off Trusted Sites (LOTS)","pathname":"/initial-access/living-off-trusted-sites","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"초기 침투 (Initial Access)","emoji":"2694"}]},{"id":"TUoAXLd3hnX1cE9a7YZv","title":"개념","pathname":"/enumeration/concepts","siteSpaceId":"sitesp_L0Eo4","description":"TA0007","breadcrumbs":[{"label":"정보 수집 - 내부망","emoji":"1f433"}]},{"id":"r152LXtx20R8fX1esMQm","title":"로컬 호스트 정보 수집","pathname":"/enumeration/local-host-enumeration","siteSpaceId":"sitesp_L0Eo4","description":"MITRE ATTACK - TA0007 (T1082, T1016, ...)","breadcrumbs":[{"label":"정보 수집 - 내부망","emoji":"1f433"}]},{"id":"1n9ZkjpEeRA6RsI5DeEp","title":"블러드하운드","pathname":"/enumeration/bloodhound","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"정보 수집 - 내부망","emoji":"1f433"}]},{"id":"BoGX3Pqg3dlC8c27tkjS","title":"SMB 쉐어 수집","pathname":"/enumeration/smb-share","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"정보 수집 - 내부망","emoji":"1f433"}]},{"id":"uYerO63sCTS6FKYfpruz","title":"정보 수집 - 파워쉘","pathname":"/enumeration/powershell","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"정보 수집 - 내부망","emoji":"1f433"}]},{"id":"Zr4ftp8YUtprK2wI7lZs","title":"정보 수집 - C# - TODO","pathname":"/enumeration/csharp","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"정보 수집 - 내부망","emoji":"1f433"}]},{"id":"SGYvW0jIEZC6pLcN0PZi","title":"커버로스 유저 이름 정보수집","pathname":"/enumeration/kerberos-username-enumeration","siteSpaceId":"sitesp_L0Eo4","description":"Discovery (TA0007) + Account Discovery (T1087)","breadcrumbs":[{"label":"정보 수집 - 내부망","emoji":"1f433"}]},{"id":"X4qW6ofAZb3We1zWGq8S","title":"CME - 호스트이름과 IP주소","pathname":"/enumeration/cme-hostname-ip","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"정보 수집 - 내부망","emoji":"1f433"}]},{"id":"yonNmMd7Xu3Vc4AqACPf","title":"LDAP Anonymous Bind","pathname":"/enumeration/ldap-anonymous-bind","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"정보 수집 - 내부망","emoji":"1f433"}]},{"id":"MDGq4n4YA106LNgzcijt","title":"개념","pathname":"/execution/concepts","siteSpaceId":"sitesp_L0Eo4","description":"TA0002","breadcrumbs":[{"label":"실행 (Execution)","emoji":"1f434"}]},{"id":"YHWOFpEof6wC9iro1XuB","title":"파워쉘","pathname":"/execution/powershell","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"실행 (Execution)","emoji":"1f434"}]},{"id":"baYTYgBHvzlseOmQS9Mg","title":"인메모리 실행","pathname":"/execution/powershell/in-memory-execution","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"실행 (Execution)","emoji":"1f434"},{"label":"파워쉘"}]},{"id":"b9GUJqOUkaIAPyNjl7sO","title":"C# 실행","pathname":"/execution/powershell/csharp-execution","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"실행 (Execution)","emoji":"1f434"},{"label":"파워쉘"}]},{"id":"jS4kbFTU23zr34RMxMFy","title":"윈도우 API 실행","pathname":"/execution/powershell/winapi-execution","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"실행 (Execution)","emoji":"1f434"},{"label":"파워쉘"}]},{"id":"7m7jwFx1aY9D9Jzui7yN","title":"LOLBAS","pathname":"/execution/lolbas","siteSpaceId":"sitesp_L0Eo4","description":"T1218","breadcrumbs":[{"label":"실행 (Execution)","emoji":"1f434"}]},{"id":"oX1Z9QFQTcwidJ2eRX8M","title":"Native API - TODO","pathname":"/execution/native-api","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"실행 (Execution)","emoji":"1f434"}]},{"id":"oUSpNfv8RAQUgIb0JhZ4","title":"개념","pathname":"/persistence/concepts","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"지속성 (Persistence)","emoji":"1f643"}]},{"id":"rG6tJGj4wa9fuubt9cDT","title":"골든 티켓 (Golden Ticket)","pathname":"/persistence/golden-ticket","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"지속성 (Persistence)","emoji":"1f643"}]},{"id":"SKUpr0IlRjUPRLdDKDOS","title":"DLL 사이드로딩 (DLL Side-Loading)","pathname":"/persistence/dll-sideloading","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"지속성 (Persistence)","emoji":"1f643"}]},{"id":"WRUjq92HIvqBtI5MR88b","title":"DLL Search Order Hijacking - TODO","pathname":"/persistence/dll-hijacking","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"지속성 (Persistence)","emoji":"1f643"}]},{"id":"Ce3Mj0shgwFcVF0VndOQ","title":"레지스트리 / 스타트업 폴더","pathname":"/persistence/registry-startup-folder","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"지속성 (Persistence)","emoji":"1f643"}]},{"id":"aqUVCMdQf7vUr6sRlMf1","title":"개념","pathname":"/privilege-escalation/concepts","siteSpaceId":"sitesp_L0Eo4","description":"TA0004","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"}]},{"id":"0fijmGdE3BKIYHZYnjr0","title":"AD 권한 상승","pathname":"/privilege-escalation/ad","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"}]},{"id":"CVKRGe4S8HTWLcsQjSIu","title":"Active Directory Certificate Services (ADCS)","pathname":"/privilege-escalation/ad/adcs","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"},{"label":"AD 권한 상승"}]},{"id":"uS77jYs3tUbnkH7ELbce","title":"ESC1","pathname":"/privilege-escalation/ad/adcs/esc1","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"},{"label":"AD 권한 상승"},{"label":"Active Directory Certificate Services (ADCS)"}]},{"id":"UzMD6pHJi36UZoveVgSb","title":"ESC8","pathname":"/privilege-escalation/ad/adcs/esc8","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"},{"label":"AD 권한 상승"},{"label":"Active Directory Certificate Services (ADCS)"}]},{"id":"tQmS8xXRnxCNx5IDqJHg","title":"Shadow Credentials","pathname":"/privilege-escalation/ad/shadow-credentials","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"},{"label":"AD 권한 상승"}]},{"id":"cGgkJkzFXaWRUwxcCVSi","title":"noPac","pathname":"/privilege-escalation/ad/nopac","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"},{"label":"AD 권한 상승"}]},{"id":"ZVI3d0nNwcs9a0yugscw","title":"Kerberoasting","pathname":"/privilege-escalation/ad/kerberoasting","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"},{"label":"AD 권한 상승"}]},{"id":"qdHzDM6IlDwUOodIWbRj","title":"AS-REP Roasting","pathname":"/privilege-escalation/ad/asrep-roasting","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"},{"label":"AD 권한 상승"}]},{"id":"nfe15m0xmaj01BFdDUqg","title":"DHCPv6 포이즈닝","pathname":"/privilege-escalation/ad/dhcpv6","siteSpaceId":"sitesp_L0Eo4","description":"T1557.003","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"},{"label":"AD 권한 상승"}]},{"id":"7MJoDeTK8Jw7S0RSn8Bv","title":"Resource-Based Constrained Delegation (RBCD)","pathname":"/privilege-escalation/ad/rbcd","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"},{"label":"AD 권한 상승"}]},{"id":"Y10ibC1veS2NBPWsEqly","title":"SCCM","pathname":"/privilege-escalation/ad/sccm","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"},{"label":"AD 권한 상승"}]},{"id":"IzjvUjda64QLglo4Kqnk","title":"AD-DACL","pathname":"/privilege-escalation/ad-dacl","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"}]},{"id":"lRl72pfMcDqfPfcrW3md","title":"AddAllowedToAct","pathname":"/privilege-escalation/ad-dacl/addallowedtoact","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"},{"label":"AD-DACL"}]},{"id":"4LNwDHt39gCBrEovsJI0","title":"AddKeyCredentialLink","pathname":"/privilege-escalation/ad-dacl/addkeycredentiallink","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"},{"label":"AD-DACL"}]},{"id":"fF5YLoojlqPa8zT7m8dc","title":"GenericAll","pathname":"/privilege-escalation/ad-dacl/genericall","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"},{"label":"AD-DACL"}]},{"id":"A2K9l65HkqWGMzyTnOYM","title":"GenericWrite","pathname":"/privilege-escalation/ad-dacl/genericwrite","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"},{"label":"AD-DACL"}]},{"id":"lJVrrmukRra1gwihN756","title":"WriteDACL","pathname":"/privilege-escalation/ad-dacl/writedacl","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"},{"label":"AD-DACL"}]},{"id":"EBqFcVGXkWSk9FDybPNn","title":"AllExtendedRights","pathname":"/privilege-escalation/ad-dacl/allextendedrights","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"},{"label":"AD-DACL"}]},{"id":"vQbcI88ttRnRMD4UjvRG","title":"WriteAccountRestrictions","pathname":"/privilege-escalation/ad-dacl/writeaccountrestrictions","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"},{"label":"AD-DACL"}]},{"id":"EfCXfBXhChDEC73zrnLR","title":"WriteOwner","pathname":"/privilege-escalation/ad-dacl/writeowner","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"},{"label":"AD-DACL"}]},{"id":"kjpcjdA7jJD3YGrehWwN","title":"AddMember","pathname":"/privilege-escalation/ad-dacl/addmember","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"},{"label":"AD-DACL"}]},{"id":"Sk3Ln0aDKDzPGvdVn6Oy","title":"로컬 권한 상승 - TODO","pathname":"/privilege-escalation/local","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"}]},{"id":"wNCYSsZkAlm5Jb7fPm7U","title":"잘못된 서비스 설정","pathname":"/privilege-escalation/local/misconfigured-services","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"},{"label":"로컬 권한 상승 - TODO"}]},{"id":"uHfX3CccDwT6S1UYJkaw","title":"Unquoted Service Path","pathname":"/privilege-escalation/local/unquoted-service-path","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"},{"label":"로컬 권한 상승 - TODO"}]},{"id":"Vx7OCooBKe248Z8Kgw83","title":"Always Install Elevated","pathname":"/privilege-escalation/local/always-install-elevated","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"},{"label":"로컬 권한 상승 - TODO"}]},{"id":"1o5ObKZjsr2MjTJkhWJG","title":"PrintNightmare","pathname":"/privilege-escalation/local/printnightmare","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"권한 상승","emoji":"2b06"},{"label":"로컬 권한 상승 - TODO"}]},{"id":"rrLDT5JMy1kjlzb2vdDB","title":"쉘코드 암호화","pathname":"/defense-evasion/shellcode-encryption","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"보안 우회 (Defense Evasion)","emoji":"1f40d"}]},{"id":"WHKYeDkD58tNoTX26Dx8","title":"런타임 다이나믹 링킹 (Run-time Dynamic Linking)","pathname":"/defense-evasion/run-time-dynamic-linking","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"보안 우회 (Defense Evasion)","emoji":"1f40d"}]},{"id":"AEy4J11GJHtUdMrM9SL4","title":"AMSI 우회","pathname":"/defense-evasion/amsi-bypass","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"보안 우회 (Defense Evasion)","emoji":"1f40d"}]},{"id":"fGyFyY9SiKvMfDbj3DMm","title":"유저랜드 후킹 - 역사","pathname":"/defense-evasion/userland-hooking-history","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"보안 우회 (Defense Evasion)","emoji":"1f40d"}]},{"id":"iLf5SiN7ScEfLIeMBzGO","title":"유저랜드 커널랜드 윈도우API 개념","pathname":"/defense-evasion/ring0-ring3-winapi","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"보안 우회 (Defense Evasion)","emoji":"1f40d"}]},{"id":"DYcFyECyyZQMPVJRsvsy","title":"유저랜드 후킹","pathname":"/defense-evasion/userland-hooking","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"보안 우회 (Defense Evasion)","emoji":"1f40d"}]},{"id":"8zho1SsE5ZkeSPdRPAHF","title":"DInvoke - 시스템 콜","pathname":"/defense-evasion/dinvoke-syscall","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"보안 우회 (Defense Evasion)","emoji":"1f40d"}]},{"id":"VzJ7CxWzexaUD2mamcNy","title":"페이로드 크기","pathname":"/defense-evasion/payload-size","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"보안 우회 (Defense Evasion)","emoji":"1f40d"}]},{"id":"MbyDrvPF5BjyGnFdnNah","title":"가변적 C2 프로필","pathname":"/defense-evasion/malleable-c2-profile","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"보안 우회 (Defense Evasion)","emoji":"1f40d"}]},{"id":"rJO1qdZrSe6AroStkDVi","title":"프로세스 인젝션","pathname":"/defense-evasion/process-injection","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"보안 우회 (Defense Evasion)","emoji":"1f40d"}]},{"id":"OKYGxm3A1TNsLsVnvGzB","title":"CreateRemoteThread","pathname":"/defense-evasion/process-injection/createremotethread","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"보안 우회 (Defense Evasion)","emoji":"1f40d"},{"label":"프로세스 인젝션"}]},{"id":"lBkkYpf8Vv0WfOAiX0t1","title":"NtMapViewOfSection","pathname":"/defense-evasion/process-injection/ntmapviewofsection","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"보안 우회 (Defense Evasion)","emoji":"1f40d"},{"label":"프로세스 인젝션"}]},{"id":"ujORvWCe5LHMAsR1TGdq","title":"간단 디펜더 우회 - 쉘코드","pathname":"/defense-evasion/simple-defender-bypass","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"보안 우회 (Defense Evasion)","emoji":"1f40d"}]},{"id":"SXX0yM6iBpIrA9h3r007","title":"간단 디펜더 우회 - C#","pathname":"/defense-evasion/simple-defender-bypass-csharp","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"보안 우회 (Defense Evasion)","emoji":"1f40d"}]},{"id":"fQ2Np6Cmm4Ll1cDEgI4L","title":"MSIExec","pathname":"/defense-evasion/msiexec","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"보안 우회 (Defense Evasion)","emoji":"1f40d"}]},{"id":"6CdDJUYFHML7H18PgpUp","title":"다형성 코드","pathname":"/defense-evasion/polymorphic-code","siteSpaceId":"sitesp_L0Eo4","description":"by. @j0eun https://github.com/ChoiSG/kr-redteam-playbook/pull/5","breadcrumbs":[{"label":"보안 우회 (Defense Evasion)","emoji":"1f40d"}]},{"id":"D2H1wDvllWawJ0yvcnti","title":"후속 공격의 진화","pathname":"/post-exploitation/evolution-of-postex","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"후속 공격 (Post Exploitation)","emoji":"1f47f"}]},{"id":"o4HSEFkyQ9mcSqe7ZjtF","title":"External SID Golden Ticket","pathname":"/post-exploitation/external-sid-golden-ticket","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"후속 공격 (Post Exploitation)","emoji":"1f47f"}]},{"id":"lRgZ15s5hal6ODFFafHj","title":"커버로스","pathname":"/credential-access/kerberos","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"계정 정보 탈취 (Credential Access)","emoji":"1f3ad"}]},{"id":"5t4mTdsUd2kH9z6xwxvc","title":"커버로스팅 (Kerberoasting)","pathname":"/credential-access/kerberos/kerberoasting","siteSpaceId":"sitesp_L0Eo4","description":"MITRE ATTACK - T1558.003","breadcrumbs":[{"label":"계정 정보 탈취 (Credential Access)","emoji":"1f3ad"},{"label":"커버로스"}]},{"id":"kTOYP8hcTRGk8O82Lkc8","title":"AS-Rep Roasting","pathname":"/credential-access/kerberos/as-rep-roasting","siteSpaceId":"sitesp_L0Eo4","description":"MITRE ATTACK - T1558.004","breadcrumbs":[{"label":"계정 정보 탈취 (Credential Access)","emoji":"1f3ad"},{"label":"커버로스"}]},{"id":"YoMmQBll9MGXM8TKGpFv","title":"비밀번호 스프레이 공격","pathname":"/credential-access/password-spraying","siteSpaceId":"sitesp_L0Eo4","description":"MITRE ATTACK - T1110.003","breadcrumbs":[{"label":"계정 정보 탈취 (Credential Access)","emoji":"1f3ad"}]},{"id":"JYPFdaFLlvRZO0u9Y3Z2","title":"LLMNR/NBT-NS 포이즈닝","pathname":"/credential-access/llmnr-nbtns-poisoning","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"계정 정보 탈취 (Credential Access)","emoji":"1f3ad"}]},{"id":"a322yc65PPUK3g92SLVp","title":"NTLM 릴레이 (NTLM Relay)","pathname":"/credential-access/ntlm-relay","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"계정 정보 탈취 (Credential Access)","emoji":"1f3ad"}]},{"id":"DnhMsqYBhTm5LYQbraaR","title":"SMB to SMB","pathname":"/credential-access/ntlm-relay/smb-to-smb","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"계정 정보 탈취 (Credential Access)","emoji":"1f3ad"},{"label":"NTLM 릴레이 (NTLM Relay)"}]},{"id":"xJzQMQUpfJ9pbFzf5IYT","title":"SMB to LDAP/S","pathname":"/credential-access/ntlm-relay/smb-to-ldap-s","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"계정 정보 탈취 (Credential Access)","emoji":"1f3ad"},{"label":"NTLM 릴레이 (NTLM Relay)"}]},{"id":"yGu0AL6xA5EGZjHvZ8xA","title":"HTTP to LDAP","pathname":"/credential-access/ntlm-relay/http-to-ldap","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"계정 정보 탈취 (Credential Access)","emoji":"1f3ad"},{"label":"NTLM 릴레이 (NTLM Relay)"}]},{"id":"rAlS8NpzlEux9vLQ03ko","title":"SMB to HTTP","pathname":"/credential-access/ntlm-relay/smb-to-http","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"계정 정보 탈취 (Credential Access)","emoji":"1f3ad"},{"label":"NTLM 릴레이 (NTLM Relay)"}]},{"id":"OkPsinMzgpiW3Ei1r9uB","title":"SMB to SCCM","pathname":"/credential-access/ntlm-relay/smb-to-sccm","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"계정 정보 탈취 (Credential Access)","emoji":"1f3ad"},{"label":"NTLM 릴레이 (NTLM Relay)"}]},{"id":"B26QGkajyKnJySW6Cnu8","title":"강제 인증 (Authentication Coercion)","pathname":"/credential-access/authentication-coercion","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"계정 정보 탈취 (Credential Access)","emoji":"1f3ad"}]},{"id":"JGE9DimHqatvIoFDs7oM","title":"MS-RPRN - Printerbug / Print Spooler","pathname":"/credential-access/authentication-coercion/ms-rprn","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"계정 정보 탈취 (Credential Access)","emoji":"1f3ad"},{"label":"강제 인증 (Authentication Coercion)"}]},{"id":"030NdhirVazAmSfUucyv","title":"MS-EFSRPC - Petitpotam","pathname":"/credential-access/authentication-coercion/ms-efsrpc","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"계정 정보 탈취 (Credential Access)","emoji":"1f3ad"},{"label":"강제 인증 (Authentication Coercion)"}]},{"id":"gu1oZwTglZr19bulxPbx","title":"MS-FSRVP - ShadowCoerce","pathname":"/credential-access/authentication-coercion/ms-fsrvp","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"계정 정보 탈취 (Credential Access)","emoji":"1f3ad"},{"label":"강제 인증 (Authentication Coercion)"}]},{"id":"j5NhNU82xwhlBzwTZBw0","title":"MS-DFSNM - DFSCoerce","pathname":"/credential-access/authentication-coercion/ms-dfsnm","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"계정 정보 탈취 (Credential Access)","emoji":"1f3ad"},{"label":"강제 인증 (Authentication Coercion)"}]},{"id":"cMjprH6SACriwgyHQymZ","title":"NTLM 다운그레이드","pathname":"/credential-access/ntlm-downgrade","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"계정 정보 탈취 (Credential Access)","emoji":"1f3ad"}]},{"id":"p7qkmauuzAbvGE15w4Wv","title":"DHCPv6 포이즈닝","pathname":"/credential-access/dhcpv6","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"계정 정보 탈취 (Credential Access)","emoji":"1f3ad"}]},{"id":"nqbFlkcTfHonolgXmetd","title":"LAPS - TODO","pathname":"/credential-access/laps-todo","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"계정 정보 탈취 (Credential Access)","emoji":"1f3ad"}]},{"id":"X3ZzrCJI4s8C4wkb5Dan","title":"DCSync","pathname":"/credential-access/dcsync","siteSpaceId":"sitesp_L0Eo4","description":"ID: T1003.006 - OS Credential Dumping: DCSync","breadcrumbs":[{"label":"계정 정보 탈취 (Credential Access)","emoji":"1f3ad"}]},{"id":"SK2kOFIh69ZmnanPS74n","title":"DPAPI","pathname":"/credential-access/dpapi","siteSpaceId":"sitesp_L0Eo4","description":"T1555 -  Credentials from Password Stores","breadcrumbs":[{"label":"계정 정보 탈취 (Credential Access)","emoji":"1f3ad"}]},{"id":"kxkm9aZHxeXg0xi6y0vm","title":"개념","pathname":"/lateral-movement/concepts","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"횡적 이동 (Lateral Movement)","emoji":"2194"}]},{"id":"oFUGp5v9CZbL29BD49Mu","title":"Pass-the-Hash","pathname":"/lateral-movement/pass-the-hash","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"횡적 이동 (Lateral Movement)","emoji":"2194"}]},{"id":"igel0KNAuQVIVvBZPX7K","title":"SMB 와 PsExec","pathname":"/lateral-movement/smb-psexec","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"횡적 이동 (Lateral Movement)","emoji":"2194"}]},{"id":"nS2jjQ3IeCNvBl95Sfig","title":"WMI","pathname":"/lateral-movement/wmi","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"횡적 이동 (Lateral Movement)","emoji":"2194"}]},{"id":"EtitsSfCX6iOESC54dCk","title":"WinRM / Powershell Remoting","pathname":"/lateral-movement/winrm-ps-remoting","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"횡적 이동 (Lateral Movement)","emoji":"2194"}]},{"id":"qhuxpWWsXNZDstBS1qAy","title":"RDP","pathname":"/lateral-movement/rdp","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"횡적 이동 (Lateral Movement)","emoji":"2194"}]},{"id":"zLZpSi4OYyBFpZ5AeWPm","title":"SSH Port Forwarding & Tunneling","pathname":"/lateral-movement/ssh-tunnel","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"횡적 이동 (Lateral Movement)","emoji":"2194"}]},{"id":"0t6VLEHcHv2RDMcJCTHO","title":"Dynamic Port Forwarding & ProxyChains","pathname":"/lateral-movement/dynamic-port-fowarding","siteSpaceId":"sitesp_L0Eo4","description":"저번 SSH Port Forwarding 시간에서 배웠던 2가지 SSH 연결 방식과는 다른 차원의 개념일 수 있어 어려울 수도 있지만 끝까지 따라와 주길 바란다.","breadcrumbs":[{"label":"횡적 이동 (Lateral Movement)","emoji":"2194"}]},{"id":"MNO5p7QIAbwpo4Rf4fpH","title":"네트워크 피버팅 - 툴","pathname":"/lateral-movement/pivoting-tools","siteSpaceId":"sitesp_L0Eo4","description":"Pivoting에 자주 쓰이는 도구 간단 정리","breadcrumbs":[{"label":"횡적 이동 (Lateral Movement)","emoji":"2194"}]},{"id":"QVR3cSgHiJhv3pWmQL9J","title":"Network Pivoting (피벗) - TODO","pathname":"/lateral-movement/pivoting","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"횡적 이동 (Lateral Movement)","emoji":"2194"}]},{"id":"b3NAkaxl7Exz0Mcqrhn5","title":"윈도우 사용자 인증","pathname":"/general-concepts/windows-authentication","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"개념"}]},{"id":"H4egh1Lt6FM2lT4XE5Df","title":"NTLM 인증","pathname":"/general-concepts/windows-authentication/ntlm","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"개념"},{"label":"윈도우 사용자 인증"}]},{"id":"5q8mLztRwyzkpH0lOvhr","title":"커버로스 (Kerberos) 인증 - TODO","pathname":"/general-concepts/windows-authentication/kerberos-authentication","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"개념"},{"label":"윈도우 사용자 인증"}]},{"id":"bXZ8ruWrXXuMqJTYYCeK","title":"ADCS 인증서 기반 인증","pathname":"/general-concepts/windows-authentication/adcs-auth","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"개념"},{"label":"윈도우 사용자 인증"}]},{"id":"ZNpHADTkQD9QQuTBNYMh","title":"AD 관련 용어 해설","pathname":"/general-concepts/glossary","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"개념"}]},{"id":"SWAbcpvRqF9ywe4Xd5Fj","title":"개념","pathname":"/real-attack-ttp-and-mitigations/concepts","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"실 공격 TTP와 대응방안 - TODO"}]},{"id":"tSV8hC5cjXYE3elGiPUg","title":"시스몬 (sysmon) 설치","pathname":"/homelab/installing-sysmon","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"홈 랩 (Home lab)","emoji":"1f9d1-1f52c"}]},{"id":"dD7jeNTYogPSkxm76r5N","title":"SIEM과 EDR 솔루션 설치","pathname":"/homelab/edr","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"홈 랩 (Home lab)","emoji":"1f9d1-1f52c"}]},{"id":"3zCRx3wRiMCdhzDIIh3P","title":"취약한 랩을 위한 설정 커맨드","pathname":"/homelab/homelab-misconfigurations","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"홈 랩 (Home lab)","emoji":"1f9d1-1f52c"}]},{"id":"gWNPSxKDGyyrKeUCK5u8","title":"말웨어 자동 분석툴 Cuckoo 샌드박스 설치","pathname":"/homelab/cuckoo","siteSpaceId":"sitesp_L0Eo4","description":"이 문서에서는 Cuckoo Sandbox를 설치 및 구동하는 방법에 대해 설명합니다.","breadcrumbs":[{"label":"홈 랩 (Home lab)","emoji":"1f9d1-1f52c"}]},{"id":"mIzAEwuXgqvU6zCap8Yp","title":"DNS","pathname":"/basic-concepts/dns","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"기본 개념"}]},{"id":"rip7Apr5imkEyTV8zFH0","title":"사이버 보안에 필요한 DNS 개념 편 #1","pathname":"/basic-concepts/dns/dns-concepts","siteSpaceId":"sitesp_L0Eo4","description":"DNS 개념 편 #1","breadcrumbs":[{"label":"기본 개념"},{"label":"DNS"}]},{"id":"y2Bopq0X3Rc6kfpJs2cQ","title":"해킹에 필요한 DNS 공격 & 우회 기법 편 #2","pathname":"/basic-concepts/dns/dns-and-2","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"기본 개념"},{"label":"DNS"}]},{"id":"eVad0sUBZfCCBUfuXBzj","title":"방어에 필요한 DNS 탐지 편 #3","pathname":"/basic-concepts/dns/dns-3","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"기본 개념"},{"label":"DNS"}]},{"id":"CkY90quguKpRPmVuf6X8","title":"01-계정관리","pathname":"/web-and-mobile/01-account-management","siteSpaceId":"sitesp_L0Eo4","description":"1. 계정 관리","breadcrumbs":[{"label":"웹 & 모바일"}]},{"id":"8ZMX9ikq97pK95cYC0bA","title":"통신 과정 흐름 훑어보기","pathname":"/web-and-mobile/01-account-management/undefined","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"웹 & 모바일"},{"label":"01-계정관리"}]},{"id":"UvDXLZqdz4uSg6o31j5E","title":"첫번쩨, payload설정 방법","pathname":"/web-and-mobile/01-account-management/payload","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"웹 & 모바일"},{"label":"01-계정관리"}]},{"id":"cmWevG4mEdLuTfqizpMn","title":"두번째, 세션을 유지하는 방법","pathname":"/web-and-mobile/01-account-management/undefined-1","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"웹 & 모바일"},{"label":"01-계정관리"}]},{"id":"NU9LOpoG54IiTMOOMjVU","title":"CSRF Token에 관하여","pathname":"/web-and-mobile/01-account-management/csrf-token","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"웹 & 모바일"},{"label":"01-계정관리"}]},{"id":"wFlfUnk6S8WySROcplkW","title":"세번째, OWASP Juice Shop 로그인 페이지에서의 통신 흐름과 구조 알아보기","pathname":"/web-and-mobile/01-account-management/owasp-juice-shop","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"웹 & 모바일"},{"label":"01-계정관리"}]},{"id":"Bm6kFWFace9JMun7qRqW","title":"Host-based 공격 CheatSheet (FEAT. OSCP)","pathname":"/misc/host-based-cheatsheet-feat.-oscp","siteSpaceId":"sitesp_L0Eo4","description":"OSCP시험에 필요한 기본 호스트 공격 명령어 CheatSheet by Groot Security","breadcrumbs":[{"label":"MISC","emoji":"1f385"}]},{"id":"IbB0AzAbJDUzDrmfrwcM","title":"Enumeration (정보 수집 및 열거)","pathname":"/misc/host-based-cheatsheet-feat.-oscp/enumeration","siteSpaceId":"sitesp_L0Eo4","description":"All you need to know about basic host-based enumeration for OSCP","breadcrumbs":[{"label":"MISC","emoji":"1f385"},{"label":"Host-based 공격 CheatSheet (FEAT. OSCP)"}]},{"id":"RSEkp2RnsyjzBV59dWzq","title":"Exploitation (공격)","pathname":"/misc/host-based-cheatsheet-feat.-oscp/exploitation","siteSpaceId":"sitesp_L0Eo4","description":"All you need to know about basic host-based exploitation for OSCP","breadcrumbs":[{"label":"MISC","emoji":"1f385"},{"label":"Host-based 공격 CheatSheet (FEAT. OSCP)"}]},{"id":"8i65gyuAXBwCfdSUWYvz","title":"Post Exploitation (후속공격)","pathname":"/misc/host-based-cheatsheet-feat.-oscp/post-exploitation","siteSpaceId":"sitesp_L0Eo4","description":"All you need to know about basic host-based post exploitation for OSCP","breadcrumbs":[{"label":"MISC","emoji":"1f385"},{"label":"Host-based 공격 CheatSheet (FEAT. OSCP)"}]},{"id":"svf6Bij5ydCcKmZ3aCtK","title":"Changelog","pathname":"/misc/changelog","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"MISC","emoji":"1f385"}]},{"id":"jtOJ2rjBSsFBtNg4Jtpv","title":"기여하는 방법","pathname":"/misc/contributions","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"MISC","emoji":"1f385"}]},{"id":"mRYYecRLK2hFdjJ5oLfE","title":"레퍼런스와 크레딧","pathname":"/misc/undefined","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"MISC","emoji":"1f385"}]},{"id":"GB3kPzTv0YyDn1PvepUe","title":"C# snippets","pathname":"/misc/csharp-snippets","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"MISC","emoji":"1f385"}]},{"id":"m2daGy6F8FgBvsVHDbEZ","title":"winapi 리스트","pathname":"/misc/winapi-list","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"MISC","emoji":"1f385"}]},{"id":"rE2iXcWHqZzVagxU3Znu","title":"original notes from obsidian","pathname":"/misc/winapi-list/original-notes-from-obsidian","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"MISC","emoji":"1f385"},{"label":"winapi 리스트"}]},{"id":"PRoNpnQLojHJp9rtWB81","title":"파워쉘 원라이너 (oneliner)","pathname":"/misc/powershell-oneliners","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"MISC","emoji":"1f385"}]},{"id":"KMGG5za1ZczinHv16jbQ","title":"README-and-Template","pathname":"/personal-research/readme-and-template","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"Personal-Research","emoji":"1f4d6"}]},{"id":"hCtvdMoA2GiqGCPLreK3","title":"HellsGate","pathname":"/personal-research/readme-and-template/hellsgate","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"Personal-Research","emoji":"1f4d6"},{"label":"README-and-Template"}]},{"id":"qeDnZdy1xNXSort8919n","title":"HalosGate","pathname":"/personal-research/readme-and-template/halosgate","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"Personal-Research","emoji":"1f4d6"},{"label":"README-and-Template"}]},{"id":"xezdecHdFnD0uQJmVgX6","title":"FreshyCall","pathname":"/personal-research/readme-and-template/freshycall","siteSpaceId":"sitesp_L0Eo4","description":"","breadcrumbs":[{"label":"Personal-Research","emoji":"1f4d6"},{"label":"README-and-Template"}]}]}