Active Walkthrough — HTB
Summary
Tags
Browse by tag
Anonymous-Login 2
Azure-Cloud 1
BlobVersioning 1
CVE-2008-4250 1
CVE-2014-1812 1
CVE-2017-0144 1
CVE-2023-49103 1
Credential-Harvesting 3
Cyber-Defenders 2
Exploit 3
HTB 11
Kerberoasting 3
Linux-Server 1
Local-Privesc 1
Misconfiguration 3
Network Analysis 1
On-Prem 4
PwnedLabs 1
Splunk 1
Standalone-DC 4
Standalone-Windows-Machine 1
Standolone-Windows-Machine 1
VulnLab 1
application_whitelisting 1
asrep 1
brute-force 1
credential_compromise 1
ftp 1
ldap 3
on-prem 4
privesc 2
smb 1
standalone 2
vulnlab 1
#Anonymous-Login (2)
Baby Walkthrough: Enumerating SMB and LDAP on Windows Server 2022
This walkthrough demonstrates how to compromise a lab machine named “Baby” from Vulnlab by enumerating services like SMB and LDAP on a Windows Server 2022 Domain Controller (DC). The goal is to perform network scannin...
#Azure-Cloud (1)
MegaBigTech: Initial Access to Azure account via exposed Blob containers - PwnedLabs
Mega Big Tech has adopted a hybrid cloud architecture and continues to use a local on-premise Active Directory domain alongside Azure cloud services. They are concerned about being targeted due to their importance in ...
#BlobVersioning (1)
MegaBigTech: Initial Access to Azure account via exposed Blob containers - PwnedLabs
Mega Big Tech has adopted a hybrid cloud architecture and continues to use a local on-premise Active Directory domain alongside Azure cloud services. They are concerned about being targeted due to their importance in ...
#CVE-2008-4250 (1)
Legacy Walkthrough: Exploiting vulnerable Server Service
Legacy is a fairly straightforward beginner-level machine which demonstrates the potential security risks of SMB on Windows. Only one publicly available exploit is required to obtain administrator access.
#CVE-2014-1812 (1)
Active Walkthrough — HTB
Summary
#CVE-2017-0144 (1)
Blue Walkthrough:Exploiting CVE-2017-0144
Blue
#CVE-2023-49103 (1)
Cloudy Walkthrough - HTB
External Recon
#Credential-Harvesting (3)
Cloudy Walkthrough - HTB
External Recon
Administrator Walkthrough: Exploiting Active Directory Misconfigurations - HTB
Initial Recon
Sauna Walkthrough: From AS-REP Roasting to Domain Admin with DCSync Abuse - HTB
External Recon:
#Cyber-Defenders (2)
Revil Walkthrough - CyberDefenders Labs
Scenario
XXE Infiltration - CyberDefenders Labs
Summary:
#Exploit (3)
Cloudy Walkthrough - HTB
External Recon
Legacy Walkthrough: Exploiting vulnerable Server Service
Legacy is a fairly straightforward beginner-level machine which demonstrates the potential security risks of SMB on Windows. Only one publicly available exploit is required to obtain administrator access.
Blue Walkthrough:Exploiting CVE-2017-0144
Blue
#HTB (11)
Cloudy Walkthrough - HTB
External Recon
Active Walkthrough — HTB
Summary
Administrator Walkthrough: Exploiting Active Directory Misconfigurations - HTB
Initial Recon
Sauna Walkthrough: From AS-REP Roasting to Domain Admin with DCSync Abuse - HTB
External Recon:
Forest Walkthrough: Exploiting AS-REP Roasting and Misconfigured AD Permissions to Compromise the Domain Controller.
Recon
Return Walkthrough: Exploiting Printer Misconfigurations
Walkthrough of HTB’s Return machine
Netmon Walkthrough: Exploiting PRTG's CVE-2018-9276
Recon
Cicada Walkthrough: Exploiting Shared Access from Guest User Privileges
Recon
Jerry Walkthrough: Brute-Forcing Default Service Credentials
Recon
Legacy Walkthrough: Exploiting vulnerable Server Service
Legacy is a fairly straightforward beginner-level machine which demonstrates the potential security risks of SMB on Windows. Only one publicly available exploit is required to obtain administrator access.
Blue Walkthrough:Exploiting CVE-2017-0144
Blue
#Kerberoasting (3)
Active Walkthrough — HTB
Summary
Administrator Walkthrough: Exploiting Active Directory Misconfigurations - HTB
Initial Recon
Sauna Walkthrough: From AS-REP Roasting to Domain Admin with DCSync Abuse - HTB
External Recon:
#Linux-Server (1)
Cloudy Walkthrough - HTB
External Recon
#Local-Privesc (1)
Baby Walkthrough: Enumerating SMB and LDAP on Windows Server 2022
This walkthrough demonstrates how to compromise a lab machine named “Baby” from Vulnlab by enumerating services like SMB and LDAP on a Windows Server 2022 Domain Controller (DC). The goal is to perform network scannin...
#Misconfiguration (3)
Sauna Walkthrough: From AS-REP Roasting to Domain Admin with DCSync Abuse - HTB
External Recon:
Baby Walkthrough: Enumerating SMB and LDAP on Windows Server 2022
This walkthrough demonstrates how to compromise a lab machine named “Baby” from Vulnlab by enumerating services like SMB and LDAP on a Windows Server 2022 Domain Controller (DC). The goal is to perform network scannin...
MegaBigTech: Initial Access to Azure account via exposed Blob containers - PwnedLabs
Mega Big Tech has adopted a hybrid cloud architecture and continues to use a local on-premise Active Directory domain alongside Azure cloud services. They are concerned about being targeted due to their importance in ...
#Network Analysis (1)
XXE Infiltration - CyberDefenders Labs
Summary:
#On-Prem (4)
Active Walkthrough — HTB
Summary
Administrator Walkthrough: Exploiting Active Directory Misconfigurations - HTB
Initial Recon
Sauna Walkthrough: From AS-REP Roasting to Domain Admin with DCSync Abuse - HTB
External Recon:
Baby Walkthrough: Enumerating SMB and LDAP on Windows Server 2022
This walkthrough demonstrates how to compromise a lab machine named “Baby” from Vulnlab by enumerating services like SMB and LDAP on a Windows Server 2022 Domain Controller (DC). The goal is to perform network scannin...
#PwnedLabs (1)
MegaBigTech: Initial Access to Azure account via exposed Blob containers - PwnedLabs
Mega Big Tech has adopted a hybrid cloud architecture and continues to use a local on-premise Active Directory domain alongside Azure cloud services. They are concerned about being targeted due to their importance in ...
#Splunk (1)
Revil Walkthrough - CyberDefenders Labs
Scenario
#Standalone-DC (4)
Active Walkthrough — HTB
Summary
Administrator Walkthrough: Exploiting Active Directory Misconfigurations - HTB
Initial Recon
Sauna Walkthrough: From AS-REP Roasting to Domain Admin with DCSync Abuse - HTB
External Recon:
Baby Walkthrough: Enumerating SMB and LDAP on Windows Server 2022
This walkthrough demonstrates how to compromise a lab machine named “Baby” from Vulnlab by enumerating services like SMB and LDAP on a Windows Server 2022 Domain Controller (DC). The goal is to perform network scannin...
#Standalone-Windows-Machine (1)
Legacy Walkthrough: Exploiting vulnerable Server Service
Legacy is a fairly straightforward beginner-level machine which demonstrates the potential security risks of SMB on Windows. Only one publicly available exploit is required to obtain administrator access.
#Standolone-Windows-Machine (1)
Blue Walkthrough:Exploiting CVE-2017-0144
Blue
#VulnLab (1)
Baby Walkthrough: Enumerating SMB and LDAP on Windows Server 2022
This walkthrough demonstrates how to compromise a lab machine named “Baby” from Vulnlab by enumerating services like SMB and LDAP on a Windows Server 2022 Domain Controller (DC). The goal is to perform network scannin...
#application_whitelisting (1)
Escape Walkthrough: Exploiting Whitelisting and Privilege Escalation
Recon I started with a standard Nmap scan to discover open TCP and UDP ports:
#asrep (1)
Forest Walkthrough: Exploiting AS-REP Roasting and Misconfigured AD Permissions to Compromise the Domain Controller.
Recon
#brute-force (1)
Jerry Walkthrough: Brute-Forcing Default Service Credentials
Recon
#credential_compromise (1)
Cicada Walkthrough: Exploiting Shared Access from Guest User Privileges
Recon
#ftp (1)
Netmon Walkthrough: Exploiting PRTG's CVE-2018-9276
Recon
#ldap (3)
Forest Walkthrough: Exploiting AS-REP Roasting and Misconfigured AD Permissions to Compromise the Domain Controller.
Recon
Return Walkthrough: Exploiting Printer Misconfigurations
Walkthrough of HTB’s Return machine
Cicada Walkthrough: Exploiting Shared Access from Guest User Privileges
Recon
#on-prem (4)
Forest Walkthrough: Exploiting AS-REP Roasting and Misconfigured AD Permissions to Compromise the Domain Controller.
Recon
Return Walkthrough: Exploiting Printer Misconfigurations
Walkthrough of HTB’s Return machine
Cicada Walkthrough: Exploiting Shared Access from Guest User Privileges
Recon
Escape Walkthrough: Exploiting Whitelisting and Privilege Escalation
Recon I started with a standard Nmap scan to discover open TCP and UDP ports:
#privesc (2)
Forest Walkthrough: Exploiting AS-REP Roasting and Misconfigured AD Permissions to Compromise the Domain Controller.
Recon
Return Walkthrough: Exploiting Printer Misconfigurations
Walkthrough of HTB’s Return machine
#smb (1)
Cicada Walkthrough: Exploiting Shared Access from Guest User Privileges
Recon
#standalone (2)
Netmon Walkthrough: Exploiting PRTG's CVE-2018-9276
Recon
Jerry Walkthrough: Brute-Forcing Default Service Credentials
Recon
#vulnlab (1)
Escape Walkthrough: Exploiting Whitelisting and Privilege Escalation
Recon I started with a standard Nmap scan to discover open TCP and UDP ports: