Free on YouTube

Video
Library

68 videos walking you through a complete red team engagement — from initial access to full domain compromise. Entirely free on YouTube.

RTFM Video Library — available on desktop, tablet, and mobile
68
Videos
12
Modules
C2
Sliver Framework
100%
Free

Watch the Full Library

No signups, no paywalls. Every video available right now on YouTube.

Watch on YouTube

Operation: CyberInc

The entire video library follows a realistic red team operation against a fictitious company — CyberInc. You'll walk through each phase of the engagement step by step, building on previous modules as the operation progresses.

Starting with initial access via a malicious attachment, you'll work through situational awareness, persistence mechanisms, privilege escalation, lateral movement, Active Directory enumeration, full domain compromise, and ultimately accessing the target's source code vault — all using the Sliver C2 framework on a realistic Windows Active Directory environment.

Full Course Outline

Click any module to see the full video list.

00 Welcome
Welcome1 min
How to use RTFM Video Library1.5 min
Red Team Scenario Overview3 min
01 Infrastructure Setup
SSH
SSH Keys
SSH Forwarding & Tunneling
TCPDump & TCPReplay
Screen
IPTables
Service Manipulation
Infrastructure Setup Scenario21.5 min
02 Initial Access
Windows OS Details
Windows Administrative Binaries
Environmental Variables
Windows Key Files & Locations
Registry Run Keys
03 Situational Awareness
Operating System Information
Process & Service Enumeration
Windows Account Enumeration
Network Info & Configuration
Registry Commands
Windows Active Directory Overview
Situational Awareness Scenario7.5 min
04 User Level Persistence
User Level Persistence Overview
Scheduled Task Persistence
Run Key Persistence
Startup Directories
Poisoning Existing Scripts
User Level Persistence Scenario16 min
05 Escalation
Windows Privilege Escalation Checklist
File Info & Searching
Tree Filesystem to Searchable File
Volume Shadow Service (VSS)
Escalation via Datamining Scenario22 min
06 Lateral Movement
Remote System Enumeration
sc.exe Remote Execution
MMC COM Object
Remote schtasks Execution
Remote Execution on Domain Controller Scenario9 min
07 Active Directory Enumeration
Domain Enumeration with Net.exe
Domain Enumeration with DSQuery16.5 min
08 Domain Fortification
Mimikatz Credential Manipulation
Fortifying Domain Access Scenario10 min
Schtasks on Boot
Service Creation
Windows 10 .dll Hijack
Remote Desktop Protocol (RDP) Configuration
Misc Reconfiguration
Installing System Persistence Scenario3.5 min
09 Hunting for User Workstations
Finding User System in Windows Domain5.5 min
Hunting for User Workstations Scenario7 min
10 Active Directory Forest Compromise
AD Forest Compromise — Part 140 min
AD Forest Compromise — Part 211.5 min
11 Secret Enclave Compromise
Linux OS Details — File System
Linux OS Details — Important Files & Directories
Linux OS Details — /etc/shadow & /etc/passwd
Linux System Enumeration — OS Info
Linux System Enumeration — Situational Awareness
Linux System Enumeration — User Accounts
Linux System Enumeration — Network
Linux Post Exploitation — Bash History
Linux Post Exploitation — File Manipulation
Linux Post Exploitation — Compression, Chunking & Hashing
Linux Persistence — Service
Linux Persistence — Crontab
Linux Persistence — Script Poisoning
12 Pivoting through Tunnels
Linux Escalation — Pulling the Thread Scenario5.5 min
Accessing the Vault Scenario6 min
"Nick's video library brings the RTFM to life. What started as a quick-reference field manual is now a full training pipeline — I'm proud to see it evolve into something this comprehensive and accessible."
— Ben Clark, Author of RTFM

Ready to Start?

The full library is waiting for you — completely free.

Watch on YouTube