VOIDREAD

Home Posts Writeups

VOIDREAD

Notes from the fog. Records from the breach.

Recent

HTB . 35

Pirate - HTB

Windows Active Directory challenge centered on delegation, Kerberos, and privilege escalation workflows.

AD . 17

Valid User (No Password)

Valid User (No Password) techniques and commands for Active Directory security assessment.

AD . 16

Trusts

Trusts techniques and commands for Active Directory security assessment.

AD . 15

SCCM

SCCM techniques and commands for Active Directory security assessment.

Wandering

HTB . 44

Interpreter - HTB

Medium Linux box exploiting Mirth Connect pre‑auth RCE, cracking DB hashes for SSH, then abusing a root Flask service with eval-based SSTI.

AD . 09

Lateral Movement

Lateral Movement techniques and commands for Active Directory security assessment.

HTB . 11

TombWatcher - HTB

Active Directory chain using delegated rights to roast and pivot between users, recover gMSA secrets, and abuse ADCS/OU permissions to obtain Administrator access.

HTB . 13

Soulmate - HTB

Easy Linux machine using CrushFTP auth bypass for admin access, webshell upload, leaked Erlang creds, and an Erlang SSH service to read root files.