• Search for:

    Tag Archives: ldapsearch

    1. Home  - 
    2. Posts tagged "ldapsearch"
    27 Sep, 2025
    Hack The Box: Puppy Machine Walkthrough – Medium Difficulty
    Medium Machine , , , , , , , , , , , ,

    Crushed the Puppy machine on HTB with surgical precision! Unlocked the user flag by leveraging levi.james credentials to access the DEV share, cracking recovery.kdbx with “Liverpool,” and using ant.edwards:Antman2025! to reset ADAM.SILVER’s password, followed by a swift WinRM login to grab user.txt. For the root flag, extracted steph.cooper:ChefSteph2025! from C:\Backups, accessed a WinRM shell, and exfiltrated DPAPI keys via SMB. Impacket unveiled steph.cooper_adm:FivethChipOnItsWay2025!, opening the Administrator directory to claim root.txt.

    #Cybersecurity #HackTheBox #CTF #Pentesting #PrivilegeEscalation …

    Learn MoreHack The Box: Puppy Machine Walkthrough – Medium Difficulty

    19 Jul, 2025
    Hack The Box: Scepter Machine Walkthrough – Hard Difficulty
    Hard Machine , , , , , , , , , , , , , , ,

    I conquered the “Scepter” machine on Hack The Box, a challenging Active Directory exploit! Initially, I cracked weak .pfx certificate passwords using pfx2john and rockyou.txt. After syncing time, I extracted D.BAKER’s NTLM hash via Certipy and used BloodHound to reveal A.CARTER’s password reset privileges, exploiting ESC9 to capture the user flag. Subsequently, H.BROWN’s access to P.ADAMS’s altSecurityIdentities enabled an ESC14 attack, forging a certificate for passwordless authentication. Consequently, P.ADAMS’s DCSync rights allowed domain hash extraction, securing the root flag via Evil-WinRM.

    #Cybersecurity #HackTheBox #ActiveDirectory #PrivilegeEscalation #CTF #EthicalHacking …

    Learn MoreHack The Box: Scepter Machine Walkthrough – Hard Difficulty

    26 Apr, 2025
    Hack The Box: Vintage Machine Walkthrough – Hard Difficulty
    Hard Machine , , , , , , , , , , , ,

    Recently completed an Active Directory penetration test where I obtained both the user and root flags through a series of Kerberos and privilege escalation attacks. I first exploited a weak password on a legacy computer account (fs01$) to retrieve a Kerberos TGT and extract the gMSA password. After reactivating a disabled service account (svc_sql), making it ASREPRoastable, and cracking its hash, I gained credentials for another domain user and authenticated via Evil-WinRM to capture the user flag. For the root flag, I decrypted DPAPI-protected secrets to access a higher-privileged account (c.neri_adm), added a compromised service account to a privileged group, assigned an SPN, and performed a Kerberos delegation attack to impersonate a domain admin, ultimately achieving SYSTEM-level access and capturing the root flag. Great experience applying Kerberos exploitation techniques and privilege escalation strategies in a real-world scenario!

    hashtag#ActiveDirectory hashtag#PenetrationTesting hashtag#Kerberos hashtag#OffensiveSecurity hashtag#RedTeam hashtag#CyberSecurity hashtag#ASREPRoasting hashtag#DPAPI hashtag#PrivilegeEscalation hashtag#HackTheBox hashtag#Infosec hashtag#HacktheBox …

    Learn MoreHack The Box: Vintage Machine Walkthrough – Hard Difficulty

    11 May, 2024
    Hack The Box: Monitored Machine Walkthrough – Medium Difficulty
    Medium Machine , , , , , , , , , , ,

    In this post, I would like to share a walkthrough of the Monitored Machine from Hack the Box This room will be considered a Medium machine on Hack the Box What will you gain from the Monitored machine? For the user flag, you will need

    Continue ReadingHack The Box: Monitored Machine Walkthrough – Medium Difficulty

    27 May, 2023
    Hack The Box: Absolute Machine Walkthrough – Insane Difficulty
    Insane Machine , , , , , , , , , , , , , , , , , ,

    In this post, I would like to share a walkthrough of the Absolute Machine from Hack the Box This room will be considered an Insane machine on Hack the Box What will you gain from the Absolute machine? For the user

    Continue ReadingHack The Box: Absolute Machine Walkthrough – Insane Difficulty

    6 Aug, 2022
    Hack The Box: Support Machine Walkthrough – Easy Difficulty
    Easy Machine , , , , , , , , , , , , , , ,

    In this post, I would like to share a walkthrough of the Support Machine from Hack the Box This room will be considered an Easy machine on Hack The Box What will you gain from the Support machine? For the user flag,

    Continue ReadingHack The Box: Support Machine Walkthrough – Easy Difficulty

    23 Jul, 2021
    HackTheBox: Pikaboo Machine Walkthrough – Hard Difficulty
    Hard Machine , , , , , , , , , , , , , ,

    In this post, I would like to share a walkthrough of the Pikaboo Machine from HackTheBox This room has been considered difficulty rated as a Hard machine What will you gain from the Pikaboo machine? For user flag, you will need to locate a

    Continue ReadingHackTheBox: Pikaboo Machine Walkthrough – Hard Difficulty