0xPix3l@home:~$ ls ./posts/
// LATEST POSTS
Do You Really Understand Kerberos Delegation?
Hello fellow packet enjoyers and delegation survivors,
HackTheBox - interpreter
Initial access was achieved by exploiting a Java deserialization vulnerability (CVE-2023-43208) in the Mirth Connect service, allowing...
HackTheBox - RustyKey
RustyKey was one of those boxes that kept pulling me in the deeper I looked. What started as a bit of poking around turned into a fun cha...
Deep dive into LDAP
Why LDAP?
HackTheBox - Voleur
I captured the user flag on the day the machine was released, but had trouble with root access because a certain deleted user couldn’t be...
LeHack CTF 2024 - Active Directory writeup
This write-up for the Active Directory challenge from LeHack CTF 2024. This challenge plunged into the depths of AD exploitation, testing...
BarbHack CTF 2024 : Gotham City - Active Directory writeup
HackTheBox - nocturnal
Recon
HackTheBox - Code
This a pretty straightforward machine that focuses on how to bypass pyjail as well as the ability to read a bash script.
TryHackMe - Lookup
Recon
Nmap output
```console
Nmap 7.94SVN scan initiated Sat Nov 23 04:38:55 2024 as: /usr/lib/nmap/nmap –privileged -sC -sV -T4 -p- -oN ...
HackTheBox - Administrator
This machine necessitates a basic understanding of active directory and how to take use of both DCSync and GenericWrite misconfigurations...
TryHackMe - Whiterose
Another Mr. Robot themed box.
HackTheBox - Cicada
I demonstrate how I pwned Cicada on HackTheBox.
Installing GOAD
Walking through how I set up the Game Of Active Directory lab using VMware Pro on a Windows host.
HackTheBox - MonitorsThree
A medium box considiring the number of steps, however it was worthwhile and I learned alot