PurpleSec
Where offense meets defense — a living archive of real-world attack paths, Hack The Box pwns, and threat research, built to make defenders think like attackers.
PurpleSec — Cybersecurity Research & Enterprise Defense
Offensive Ops
Full-chain adversary emulation — recon to privilege escalation, modeled on real-world TTPs.
Browse pwns →
Knowledge Base
Extensive documentation on AD exploitation, credential attacks, web vulnerabilities, and reconnaissance.
Explore knowledge →
Defense & Research
Attacker tradecraft turned into detections, hardening baselines, and SIEM logic for blue teams.
Read the blog →
0+
HTB Machines Pwned
0+
AD Attack Techniques
0+
Research Articles
0+
Years In The Field
Latest Drop
Featured Intel
Freshly published from the research desk.
Latest Post
81 Million Login Attempts in 14 Days: Inside the Massive Azure CLI Password Spray Campaign
A deep technical analysis of the LSHIY password spray campaign that hit 64 organizations via Azure CLI's ROPC flow — how it bypassed MFA, why Conditional Access policies failed, and how to lock down your Microsoft 365 tenant.
Read full analysis →
From the blog
Recent Posts
Writeups and research notes, newest first.
Jul 02, 202681 Million Login Attempts in 14 Days: Inside the Massive Azure CLI Password Spray CampaignJul 01, 2026The Samy Worm: Dissecting the Fastest-Spreading XSS Worm in HistoryJul 01, 2026Claude Fable 5 Is Back: Inside Anthropic's 19-Day Exile and the New Safety Architecture That Ended ItJun 30, 2026FIFA World Cup 2026: The Largest Cyber Attack Surface in Sporting HistoryJun 30, 2026The Phishing Epidemic of 2026: How Generative AI Reshaped Social EngineeringJun 30, 2026GuardFall: Why Modern AI Agents Are Falling for Decades-Old Shell TricksJun 30, 2026WhatsApp Is Finally Getting Usernames — And It's a Bigger Deal Than You Think
Credentials
Certifications
Validation that the methodology holds up under pressure.

PNPT
Practical Network Penetration Tester
Certified
Anthropic
Claude Code in Action
Certified
Securiti
AI Security & Governance
Certified

AZ-104
Azure Administrator Associate
Certified

SC-300
Identity and Access Administrator
Certified
OSCP
Offensive Security Certified Professional
In Progress
Ethos
Words to Hack By
Let's talk security.
Building something, breaking something, or hardening something? I'm always up for a sharp conversation on offensive tradecraft, detection engineering, or where the industry is heading next.