HackTheBox - Outdated

00:00 - Intro
01:00 - Running nmap
02:40 - Running CrackMapExec to enumerate the share
04:10 - Talking about a common misconception about "Null SMB Authentication"
08:00 - Downloading a PDF off the open share
08:55 - Using SWAKS to send an emailw ith a link to see if anything clicks it
10:30 - Exploring the CVE's mentioned in the PDF to see one of them is Folina
11:55 - Someone clicked our link! The User Agent Shows WindowsPowerShell/5.1.19041.906, which …

hackthebox