/explore

Click through on any links that interest you or select the planets on the right to continue exploring the Outer Web.
You are here

bogs.io
| | taeluralexis.com
3.3 parsecs away

Travel
| | Exploit a machine through SMB and elevate privileges by performing a kerberoasting attack on a domain admin.
| | foxglovesecurity.com
3.5 parsecs away

Travel
| | By @breenmachine Privilege Escalation on Windows 7,8,10, Server 2008, Server 2012... and a new network attack How it works Hot Potato (aka: Potato) takes advantage of known issues in Windows to gain local privilege escalation in default configurations, namely NTLM relay (specifically HTTP->SMB relay) and NBNS spoofing. If this sounds vaguely familiar, it's because a...
| | 0xdf.gitlab.io
3.4 parsecs away

Travel
| | [Updated for 2024] Check out the latest version of this post here.?
| | shenaniganslabs.io
23.2 parsecs away

Travel
| By default, domain joined Windows workstations allow access to the network selection UI from the lock screen. An attacker with physical access to a locked device with WiFi capabilities (such as a laptop or a workstation) can abuse this functionality to force the laptop to authenticate against a rogue access point and capture a MSCHAPv2 challenge response hash for the domain computer account. This challenge response hash can then be submitted to crack.sh to recover the NTLM hash of the computer account in less than 24 hours. Once recovered, this NTLM hash combined with the domain SID can be used to forge Kerberos silver tickets to impersonate a privileged user and compromise the host. An example of this is to create a silver ticket for the CIFS service of the...