Search - HackTheBox
SummarySearch is a hard HackTheBox machine that requires some knowledge about Active Directory. First of all, we find a webserver running on port 80, 443 and 8172. We have to do some OSINT on the website to find a password. After finding credentials for Hope.Sharp, we are able to authenticate with SMB and LDAP. We can also use bloodhound-python to get information about the domain.
By using bloodhound we can find a service account that is kerberoastable. After getting the hash for this account, w ...
Scrambled - HackTheBox
Nmap scanA Nmap scan shows us that there are a lot of opened ports on the target server. The target server seems to be running a Windows Server OS. Also, we can see that it is promoted to a Active Directory by looking at the opened ports. For example, LDAP is a open port.
12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970717273747576777879808182838485868788899091929394959697989910010110210310410510610710810911011111 ...
