These are the kinds of real conversations I'm interested in. I offered a first best shot at the Offensive Security Tool definition, and I've since modified it with feedback. The idea is there's no patch that nullifies the utility of the OST. This distinction is key.
-
-
Nuance is what enables categorization which is why people are scared of definition. People have been "but what about PSEXEC" since the onset of the conversation, but the conversation is a lot more mature than that at this stage. I didn't think you still wanted to engage though.
-
I think that conversation predates psexec.... By about a century

- 26 more replies
New conversation -
-
-
Definitions matter. OST is Offensife Security. So what is the established industry standard for offensive security tooling?
-
Consensus matters, and you don't have it.
- 2 more replies
New conversation -
-
-
If Andrew isn’t credentialed to define OST, then I’ll assume the people that discussed this originally 20 years ago already have a perfect solution for this so I’ll await that definition.
-
I’ve always called them post exploitation tools
https://www.blackhat.com/presentations/bh-usa-08/Smith_Ames/BH_US_08_Smith_Ames_Meta-Post_Exploitation.pdf …
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.
