CCTV - HTB
Easy Linux CCTV machine abusing ZoneMinder and MotionEye flaws through SQL injection and escalation. [Unintended]
Pirate - HTB
Windows Active Directory challenge centered on delegation, Kerberos, and privilege escalation workflows.
Valid User (No Password)
Valid User (No Password) techniques and commands for Active Directory security assessment.
Trusts
Trusts techniques and commands for Active Directory security assessment.
SeManageVolumePrivilege Exploit
SeManageVolumePrivilege Exploit – AD CS Certificate Theft to DA via Certipy
Fries - HTB
Hard Windows AD + container lab. Abuse pgAdmin for container RCE, pivot to internal services, capture LDAP creds, extract gMSA secrets, then ADCS ESC7 to Administrator.
Enable AVX/AVX2 Support in Kali VM on VirtualBox
Enable AVX/AVX2 Support in Kali VM on VirtualBox
DarkZero - HackTheBox Writeup
An Active Directory–based pentest scenario involving MSSQL pivoting, Kerberos abuse, and privilege escalation via CVE-2024-30085.