- Популярные видео
- Авто
- Видео-блоги
- ДТП, аварии
- Для маленьких
- Еда, напитки
- Животные
- Закон и право
- Знаменитости
- Игры
- Искусство
- Комедии
- Красота, мода
- Кулинария, рецепты
- Люди
- Мото
- Музыка
- Мультфильмы
- Наука, технологии
- Новости
- Образование
- Политика
- Праздники
- Приколы
- Природа
- Происшествия
- Путешествия
- Развлечения
- Ржач
- Семья
- Сериалы
- Спорт
- Стиль жизни
- ТВ передачи
- Танцы
- Технологии
- Товары
- Ужасы
- Фильмы
- Шоу-бизнес
- Юмор
HackTheBox HTB Sauna - AS-REP Roastable kerbrute && DCsync Attack
00:00 - Intro
00:47 - Start of the nmap scan and looking at the Ports
02:14 - Adding Domain in the host file and looking at the website
03:39 - Trying to Create a username dictionary and kerbrute to do username bruteforce
11:12 - Doing AS-Rep Roastable Attack on fsmith user
13:00 - Cracking the hash with john to get plaintext password
13:31 - Crackmapexec to password spray with smb and winrm and logging in as evil-winrm to get thee flag
16:22 - Upload winpeas and finding the credentials of svc_loanmgr and logging in as svc_loanmgr
21:42 - Uploading shraphound and analyzing the results in bloodhound
25:40 - Found we have DCSync rights so we can dump the credentials for the complete domain using impacket-secretsdump and get administrator
28:18 - Learning wmiexec , smbexec and psexec from impacket
Видео HackTheBox HTB Sauna - AS-REP Roastable kerbrute && DCsync Attack канала Programmer Security LTD
00:47 - Start of the nmap scan and looking at the Ports
02:14 - Adding Domain in the host file and looking at the website
03:39 - Trying to Create a username dictionary and kerbrute to do username bruteforce
11:12 - Doing AS-Rep Roastable Attack on fsmith user
13:00 - Cracking the hash with john to get plaintext password
13:31 - Crackmapexec to password spray with smb and winrm and logging in as evil-winrm to get thee flag
16:22 - Upload winpeas and finding the credentials of svc_loanmgr and logging in as svc_loanmgr
21:42 - Uploading shraphound and analyzing the results in bloodhound
25:40 - Found we have DCSync rights so we can dump the credentials for the complete domain using impacket-secretsdump and get administrator
28:18 - Learning wmiexec , smbexec and psexec from impacket
Видео HackTheBox HTB Sauna - AS-REP Roastable kerbrute && DCsync Attack канала Programmer Security LTD
Комментарии отсутствуют
Информация о видео
12 августа 2024 г. 1:53:18
00:29:15
Другие видео канала
Portswigger SSRF Lab 3 - Blind SSRF with out-of-band detection
HackTheBox - Bounty Web.config File upload && Juicy Potato exploit
TryHackMe-Wreath Active Directory Series Tasks 1-6
HackTheBox - Active Active Directory (AD) Kerberoasting
Intigriti Annual CTF 2024 Web - BioCorp XXE
Portswigger SSRF Lab 1 - Basic SSRF against Local Server
Portswigger OS Command Injection Lab 3 - Blind OS command injection with output redirection
Intigriti Annual CTF 2024 - Warmup Layers
HackTheBox - Grandpa IIS 6.0 Remote Buffer Overflow
Portswigger SSRF Lab 4 - SSRF with blacklist-based input filter
Intigriti Annual CTF 2024 WarmUp - babyflow (Binary and Buffer Overflow)
TryHackMe-Wreath Active Directory Series Task 38-46
TryHackMe-Nahamstore Remote Code Execution+ Recon (Task3+11)
TryHackMe-Daily Bugle
HackTheBox - Format Nginx Misconfiguration && Python Format String Vuln
Live Active Directory Hacking Session With Ali Zain Zahid
TryHackMe-Skynet
FirstBloodv3-Finding Bugs in Realistic Environment (PART II) (HackEvent Dec 2022) BugBountyHunter
TryHackMe-Relevant
HackTheBox - Jerry Tomcat War file Upload Exploitation
