TryHackMe Dump | Using NTML hash with evil-winrm | Hackfinity Battle Encore

⭐Welcome to the Hackfinity Battle CTF!⭐🚀

Using mimikatz LSASS dump to access windows machine with evil-winrm and get the flag.txt

📌In this video, we tackle the TryHackMe room 'Dump from the Hackfinity Battle Encore CTF. We will analyses a given dump file contain mimikatz LSASS dump, extracted all relevant users with their NTLM hashes, then use evil-winrm to connect to the windows machine. We need to find which user has full access to administrator Desktop so we can read the flag.txt file .📌

🔥Room Scenario: 🔥🚀

📌We breached Cipher's machine, uncovering encrypted plans and compromised systems, but he detected us and locked us out. Just before losing access, we dumped the LSASS process, capturing critical credentials. Now, with the dump in hand, we have one last chance to infiltrate his network and stop his next attack before it’s too late.📌

📌Key topics covered:📌

⚡ psexec.py
⚡ evil-winrm
⚡ whoami /all
⚡ whoami /groups
⚡ icacls

This video is perfect for anyone interested in web forensics, CTF challenges, and understanding how attackers use web shells.

🎓 TryHackMe Room: https://tryhackme.com/room/HackfinityBattleEncore

👍 Like, Subscribe, and Comment to stay updated with our latest cybersecurity tutorials. If you have any questions or need further clarification on any concept, feel free to drop a comment below!

👍 these tutorials are for educational purposes and to encourage responsible and legal use of hacking knowledge.

Don't forget to like, comment, and subscribe for more cybersecurity walkthroughs!

#TryHackMe #CTF #Forensics #WebShell #Cybersecurity #HackfinityBattleEncore #Dump

Видео TryHackMe Dump | Using NTML hash with evil-winrm | Hackfinity Battle Encore канала Djalil Ayed