all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Attacktive Directory — TryHackMe Write-Up

Add to bookmarks
June 14, 2024, 9:10 p.m. | Sourav Bhamare

System Weakness - Medium systemweakness.com

Attacktive Directory — TryHackMe Write-Up

Reconnaissance

Let’s start with the nmap scan.

nmap outputnmap output

We can see AD is running with the domain name THM-AD and DC name spookysec.local. Let’s use Kerbrute to brute force and enumerate valid AD accounts through Kerberos Pre-Authentication.

Before starting Kerbrute, first add the domain name to /etc/hosts file.

Kerbrute

Kerbrute syntax

Let’s start with enumerating usernames:

~/Downloads/kerbrute_linux_amd64 userenum -d spookysec.local --dc spookysec.local userlist.txt -o kerb_users.txt
  1. userenum is the command to enumerate …

accounts active directory authentication brute can cybersecurity directory domain domain name downloads etc file hosts kerberos kerbrute local name nmap penetration testing running scan start thm tryhackme tryhackme-walkthrough usernames valid write-up

Visit resource

More from systemweakness.com / System Weakness - Medium

Introduction to Bash for Cybersecurity 1 day, 11 hours ago | systemweakness.com
aardvark-infinity bash bash scripting blue +22
Analyzing a reverse Shell Correlating IOCs 1 day, 11 hours ago | systemweakness.com
analysis cybersecurity data discernible +27
Applied Computer Networks | Static Routing 1 day, 11 hours ago | systemweakness.com
cisco computer computer-networking computer science +10
Granny WriteUp | Remote Buffer Overflow | HackTheBox 1 day, 11 hours ago | systemweakness.com
buffer buffer overflow called continue +11
The Ultimate Shodan Search Guide for Cybersecurity Analysts 1 day, 11 hours ago | systemweakness.com
analysts bug bounty called cheatsheet +26
Hackviser “SolarFlare” Write Up 1 day, 11 hours ago | systemweakness.com
cybersecurity ethical hacking mysql red team +1
CVE-2023–34635: UNIBOX 3.0/3.1 SQL Injection login bypass 1 day, 11 hours ago | systemweakness.com
access administration attackers bug +20
Password Cracking 101 1 day, 11 hours ago | systemweakness.com
bug bounty cracking hacking hashcat +1
Understanding Cybersecurity: Exploits, CVEs, and More 1 day, 11 hours ago | systemweakness.com
age article aspire bug bounty +21

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

Information Technology Specialist I: Windows Engineer

@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, California
View on infosec-jobs.com

Information Technology Specialist I, LACERA: Information Security Engineer

@ Los Angeles County Employees Retirement Association (LACERA) | Pasadena, CA
View on infosec-jobs.com

Solutions Expert

@ General Dynamics Information Technology | USA MD Home Office (MDHOME)
View on infosec-jobs.com

Physical Security Specialist

@ The Aerospace Corporation | Chantilly
View on infosec-jobs.com

System Administrator

@ General Dynamics Information Technology | USA VA Newington - Customer Proprietary (VAC395)
View on infosec-jobs.com

Microsoft Exchange & 365 Systems Engineer - TS/SCI with Polygraph

@ General Dynamics Information Technology | USA VA Chantilly - 14700 Lee Rd (VAS100)
View on infosec-jobs.com