I’m Edoardo Novello (a.k.a. Electroxero) Red Team Operator specialized in Infrastructure and Active Directory
Since I was six I liked to play with computers. One day I asked myself how hard it would be to access a remote machine, and that’s when my journey into this world of hacking began. After almost eight years in red teaming I’ve built a broad set of blades: I never shared much of it publicly, only with the people I’ve worked with and friends who care about the same topics. I always wanted to share. I managed it a few times; now I’ve decided to change that and put some of my ideas and projects out there. I hope to connect with other sharp minds and to get new views, a fresh edge, on what I do, maybe different from my own. Knifesec is an independent project born some years ago, left to rust for the last three years, but right now it’s time to forge it again. The aim of this project is to share ideas, connect with people, and sharpen my professional future.
What I Do
Red Teaming
This is my current, and most sharp knife selection. The knife set is composed by an early external recon experience from bug bounty, and some custom-designed knives for any kind of phishing filets, post exploitation and evasion, and where is located my favorite and most sharp knife: Active Directory (Bunka).
Infrastructure Development
This is my scalpel, always ready to design in every kind of material, which is also part of my last years of research, where I tried to combine most of the skills I obtained in web into modern red team tooling, to design new ideas.
Web App Sec
This is my old knife, once was a razor, now it's just the driver towards new domains to discover. I entered the hacking world doing mostly web app sec, and I got extremely passionate about SQLi and complex back-end vulnerabilities like HTTP smuggling and web cache poisoning. During the transition to pure red team operator, I used my experience in bug bounty to develop an optimal discovery strategy that I then used for red teaming.