Explore >> Select a destination
|
You are here 
|
blog.ikuamike.io | ||
| | | | |
0xdf.gitlab.io
|
|
| | | | | One of the neat things about HTB is that it exposes Windows concepts unlike any CTF I'd come across before it. Forest is a great example of that. It is a domain controller that allows me to enumerate users over RPC, attack Kerberos with AS-REP Roasting, and use Win-RM to get a shell. Then I can take advantage of the permissions and accesses of that user to get DCSycn capabilities, allowing me to dump hashes for the administrator user and get a shell as the admin. In Beyond Root, I'll look at what DCSync looks like on the wire, and look at the automated task cleaning up permissions. | |
| | | | |
blog.bitexpert.de
|
|
| | | | | This blog post covers how to configure phpstorm:// links in a Windows & WSL2 setup. | |
| | | | |
taeluralexis.com
|
|
| | | | | Exploit a machine through SMB and elevate privileges by performing a kerberoasting attack on a domain admin. | |
| | | | |
brockallen.com
|
|
| | | Like MVC 4, in MVC 5 and Visual Studio 2013 we have the ability to use external login providers (aka social logins) in our ASP.NET applications. The big change related to this from the prior version is that we no longer are using DotNetOpenAuth and instead are now using OWIN authentication middleware to handle the... | ||
