Long-form pieces on the topics we know well: AD attack paths, certificate services, Kerberos, audit methodology, and what “zero false positives” actually means.
We just shipped the v0.9 release. 12 batches of Windows AD-Depth checks (F13) closed. 55 remediation playbooks. Sprint A UX finally usable. Here is what is in the box, and what comes next.
Read more →ESC1-15 (SpecterOps Certified Pre-Owned) is the canonical AD certificate-services attack family. This is how we detect every variant deterministically — no false positives, no missed paths, no LLM.
Read more →The pericial round-trip protocol, why every check is built twice, and why a single false positive on a clean DC is worse than a missed finding.
Why every fix Obexum ships is dry-run by default, why we force a rollback section even when rollback is impossible, and how playbooks earn the right to bypass change-management.