Digital Offensive

Posted on Sunday, 9th December 2018 by Michael

Today we look at Active from Hack the Box (HTB). Active is a Active directory server that due to improper controls is hackable to get Administrator access. First, we will look at initial enumeration to gain access vis a null session to a sensitive readable file that contains account credentials (Groups.xml). We will then decrypt the password and remap the Users share as a valid user to gain the user.txt. From there, we can use that user account to further enumerate by looking at Kerbros and the SPN's to gain Administrator. Come along for the journey.

Books and other tools for Active Directory Security / Hacking:

• Hands-On Red Team Tactics: A practical guide to mastering Red Team operations: https://amzn.to/2PupEL9
• Active Directory: Designing, Deploying, and Running Active Directory: https://amzn.to/2SAEFwJ

Links to resources:

• Kerbros Roasting: https://www.blackhillsinfosec.com/a-t...
• Active Directory Security: http://adsecurity.org
• MS14-025: https://support.microsoft.com/en-us/h...

Social Media:

• Store:http://www.digitaloffensive.com/store
• Blog: http://www.digitaloffensive.com
• Linkedin: https://www.linkedin.com/in/michael-l...
• Twitter: https://twitter.com/genxweb
• Youtube: https://www.youtube.com/user/genxweb

Posted in Uncategorized | Comments (0)

Leave a Reply

Name (required)

Mail (will not be published) (required)

Website

CAPTCHA Code *