<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom"><channel><title>Red-Team on Ethical Hacking | Pentest e Sicurezza Informatica | Hackita</title><link>https://hackita.it/tags/red-team/</link><description>Recent content in Red-Team on Ethical Hacking | Pentest e Sicurezza Informatica | Hackita</description><generator>Hugo</generator><language>it</language><lastBuildDate>Thu, 02 Jul 2026 00:00:00 +0000</lastBuildDate><atom:link href="https://hackita.it/tags/red-team/index.xml" rel="self" type="application/rss+xml"/><item><title>Phishing Attack Vectors: A Red Team Technical Breakdown</title><link>https://hackita.it/articoli/phishing-techniques-red-team/</link><pubDate>Fri, 19 Jun 2026 00:00:00 +0000</pubDate><guid>https://hackita.it/articoli/phishing-techniques-red-team/</guid><description>&lt;h1
 id="phishing-attack-vectors-a-red-team-technical-breakdown" class="group/anchor-heading"&gt;
 Phishing Attack Vectors: A Red Team Technical Breakdown
 &lt;a href="#phishing-attack-vectors-a-red-team-technical-breakdown" class="text-inherit opacity-0 group-hover/anchor-heading:opacity-100 decoration-transparent"&gt;#&lt;/a&gt;
&lt;/h1&gt;&lt;blockquote&gt;
&lt;p&gt;&lt;strong&gt;Legal disclaimer:&lt;/strong&gt; The techniques and tools described in this article are intended exclusively for authorized penetration testing engagements, security research, and educational purposes. Using these methods against systems or individuals without explicit written authorization is illegal under most jurisdictions, including Italy&amp;rsquo;s D.lgs. 231/2001 and the Computer Fraud and Abuse Act (US). HackITA assumes no responsibility for any misuse of the information provided. Always operate within the boundaries of a signed scope agreement.&lt;/p&gt;</description></item><item><title>HackIta: il blog italiano di Ethical Hacking, Pentesting e Offensive Security</title><link>https://hackita.it/articoli/hackita/</link><pubDate>Wed, 08 Apr 2026 00:00:00 +0000</pubDate><guid>https://hackita.it/articoli/hackita/</guid><description>&lt;h1
 id="hackita-la-guida-italiana-allethical-hacking-penetration-testing-e-offensive-security" class="group/anchor-heading"&gt;
 HackIta: la guida italiana all&amp;rsquo;Ethical Hacking, Penetration Testing e Offensive Security
 &lt;a href="#hackita-la-guida-italiana-allethical-hacking-penetration-testing-e-offensive-security" class="text-inherit opacity-0 group-hover/anchor-heading:opacity-100 decoration-transparent"&gt;#&lt;/a&gt;
&lt;/h1&gt;&lt;blockquote&gt;
&lt;p&gt;&lt;strong&gt;Nota:&lt;/strong&gt; stai cercando &lt;strong&gt;HackIta&lt;/strong&gt; — hackita.it. Non &amp;ldquo;Ackita&amp;rdquo;, non il cane Akita. Questa è la risorsa italiana per chi vuole imparare l&amp;rsquo;offensive security sul serio.&lt;/p&gt;
&lt;/blockquote&gt;
&lt;p&gt;&lt;strong&gt;HackIta&lt;/strong&gt; è il blog italiano di riferimento per chi studia o pratica l&amp;rsquo;&lt;strong&gt;ethical hacking&lt;/strong&gt; e l&amp;rsquo;&lt;strong&gt;offensive security&lt;/strong&gt;. Non trovi teoria fumosa o concetti copia-incollati da Wikipedia: trovi guide tecniche, walkthrough ragionati e metodologie usate nei veri ambienti di attacco.&lt;/p&gt;</description></item><item><title>Rubeus: Attacchi Kerberos in Active Directory (2026)</title><link>https://hackita.it/articoli/rubeus/</link><pubDate>Tue, 24 Feb 2026 00:00:00 +0000</pubDate><guid>https://hackita.it/articoli/rubeus/</guid><description>&lt;h1
 id="rubeus-attacchi-kerberos-in-active-directory-guida-completa-per-pentest" class="group/anchor-heading"&gt;
 Rubeus: Attacchi Kerberos in Active Directory, Guida Completa per Pentest
 &lt;a href="#rubeus-attacchi-kerberos-in-active-directory-guida-completa-per-pentest" class="text-inherit opacity-0 group-hover/anchor-heading:opacity-100 decoration-transparent"&gt;#&lt;/a&gt;
&lt;/h1&gt;&lt;p&gt;Rubeus è il tool C# di GhostPack per interagire a basso livello col protocollo &lt;a href="https://hackita.it/articoli/kerberos/"&gt;Kerberos&lt;/a&gt; in Active Directory: richiede TGT/TGS via API di autenticazione senza toccare LSASS, il che lo rende l&amp;rsquo;alternativa a &lt;a href="https://hackita.it/articoli/mimikatz/"&gt;Mimikatz&lt;/a&gt; quando serve credential access senza privilegi amministrativi. Copre Kerberoasting, AS-REP Roasting, Pass-the-Ticket, Overpass-the-Hash, abuse della delegation e forgery di ticket (golden/silver/diamond). Versione corrente: v2.3.3.&lt;/p&gt;</description></item></channel></rss>