all InfoSec news
Proving Grounds Practise | Active Directory Box: Access
Jan. 12, 2023, 1:19 p.m. | J0s3phKg
System Weakness - Medium systemweakness.com
This box is a domain controller, and it involves a number of interesting techniques. If you are preparing OSCP or learning to hack, don't miss this incredible box.
Key points: #arbitrary file upload, #hypertext access (.htaccess), #kerberoasting, #SeChangeNotifyPrivilege
Port Scan
Let's start to hack by scanning the ports of the machine. And according to the scan result, this machine is a domain controller of the "access.offsec" domain.
┌──(parallels㉿kali)-[~/pg/Windows-Access]
└─$ nmap -Pn -T4 -p- --min-rate=1000 -sV -sC $IP …
access active directory box directory hacking oscp oscp-preparation pentesting provinggrounds
More from systemweakness.com / System Weakness - Medium
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
EY GDS Internship Program - SAP, Cyber, IT Consultant or Finance Talents with German language
@ EY | Wrocław, DS, PL, 50-086
Security Architect - 100% Remote (REF1604S)
@ Citizant | Chantilly, VA, United States
Network Security Engineer - Firewall admin (f/m/d)
@ Deutsche Börse | Prague, CZ
Junior Cyber Solutions Consultant
@ Dionach | Glasgow, Scotland, United Kingdom
Senior Software Engineer (Cryptography), Bitkey
@ Block | New York City, United States