Pirate - HTB
Windows Active Directory challenge centered on delegation, Kerberos, and privilege escalation workflows.
Valid User (No Password)
Valid User (No Password) techniques and commands for Active Directory security assessment.
Trusts
Trusts techniques and commands for Active Directory security assessment.
SCCM
SCCM techniques and commands for Active Directory security assessment.
RustyKey - HTB
RustyKey is a hard Windows machine chaining Kerberos time abuse, AD ACL misconfigurations, a 7-Zip shell extension hijack, and SPN-less RBCD to reach domain admin.
Man In The Middle (Listen and Relay)
Man In The Middle (Listen and Relay) techniques and commands for Active Directory security assessment.
Admin Access
Admin Access techniques and commands for Active Directory security assessment.
Hercules - HTB
Insane Windows AD chain featuring LDAP injection, forged ASP.NET auth cookies, file-based hash capture, ADCS abuse, and RBCD to full domain compromise.