• Search for:

    Tag Archives: Active Directory

    1. Home  - 
    2. Posts tagged "Active Directory"
    1 Nov, 2025
    Hack The Box: Voleur Machinen Walkthrough – Medium Difficulty
    Medium Machine , , , , , , , , , , , ,

    Cracked a password-protected Excel on an SMB share to recover service-account credentials, used Kerberos to access a user account and capture user.txt, then leveraged AD write permissions to restore a deleted admin, decrypt DPAPI artefacts for high‑priv creds, and access the DC to grab root.txt.

    #HackTheBox #ADSecurity #Kerberos #DPAPI #RedTeam #CTF

    Learn MoreHack The Box: Voleur Machinen Walkthrough – Medium Difficulty

    28 Jun, 2025
    Hack The Box: Haze Machine Walkthrough – Hard Difficulty
    Hard Machine , , , , , , , , , , , , , , ,

    New Write-Up Published: Haze [Medium | Windows | Active Directory] – Hack The Box

    Just released a walkthrough for Haze, a medium-difficulty Windows machine on Hack The Box. Initial access was obtained by exploiting CVE-2024-36991, a local file inclusion vulnerability in Splunk, to extract LDAP credentials. This enabled a Shadow Credentials attack using PyWhisker and Certipy, allowing lateral movement to a high-privileged domain user. For privilege escalation, I utilized Splunk admin access to deploy a reverse shell via a crafted app package. Upon gaining shell access, I escalated privileges to NT SYSTEM by abusing SeImpersonatePrivilege with SweetPotato. This box offers great insight into chained Active Directory abuse and Splunk misconfigurations.

    #HackTheBox #RedTeam #ActiveDirectory #Splunk #CVE202436991 #ShadowCredentials #PrivilegeEscalation #SweetPotato #CTF #InfoSec #WriteUp #CyberSecurity …

    Learn MoreHack The Box: Haze Machine Walkthrough – Hard Difficulty

    2 Apr, 2023
    Hack The Box: Sekhmet Machine Walkthrough – Insane Difficulty
    Insane Machine , , , , , , , , , , , , , , , , , , ,

    In this post, I would like to share a walkthrough of the Sekhmet Machine from Hack the Box This room will be considered an Insane machine on Hack the Box What will you gain from the Sekhmet machine? For the user

    Continue ReadingHack The Box: Sekhmet Machine Walkthrough – Insane Difficulty

    31 Mar, 2022
    Hack The Box: Timelapse Machine Walkthrough – Easy Difficulty
    Easy Machine , , , , , , , , , , , ,

    In this post, I would like to share a walkthrough of the Timelapse Machine from Hack the Box This room will be considered as a Easy machine on Hack The box What will you gain from the Timelapse machine? For the user flag, you

    Continue ReadingHack The Box: Timelapse Machine Walkthrough – Easy Difficulty

    19 Feb, 2022
    Hack The Box: Acute Machine Walkthrough – Hard Difficulty
    Hard Machine , , , , , , , , , , ,

    In this post, I would like to share a walkthrough of the Acute Machine from Hack the Box This room will be considered as a Hard machine on Hack The box What will you gain from the Acute machine? For the user flag, you

    Continue ReadingHack The Box: Acute Machine Walkthrough – Hard Difficulty