YPYogesh Peelainexploitnotes.hashnode.dev·2d ago · 13 min readHackTheBox: Delegate WriteupSummary Delegate is an Active Directory box built around a chain of AD misconfigurations rather than a single bug. Anonymous/guest SMB access leaks a logon script (users.bat) on the NETLOGON share con00
YPYogesh Peelainexploitnotes.hashnode.dev·2d ago · 35 min readHackTheBox: Phantom WriteupExecutive Summary Phantom is an Active Directory box where the entire path from unauthenticated guest to Domain Admin comes down to credential reuse and secrets sitting in accessible file shares. Ther00
YPYogesh Peelainexploitnotes.hashnode.dev·Jul 2 · 21 min readHackTheBox: LustrousTwo WriteupSummary This box is a Windows Active Directory domain controller that only accepts Kerberos authentication (NTLM is disabled). Initial access starts with anonymous FTP exposing a valid username list, 00
APAmal PKinblog.amalpk.in·May 8 · 7 min readHackthebox Fluffy Walkthrough — Windows Seasonal BoxFluffy is a realistic Windows Active Directory (AD) machine on Hack The Box's Seasonal track that simulates a corporate environment with common misconfigurations and vulnerabilities often seen in real00
LVLong Voinlongvh0904.hashnode.dev·Apr 8 · 43 min readHTB Attack Diary — Garfield (Hard, Windows)Introduction Garfield is a Hard-rated Windows machine that simulates a realistic Active Directory environment with a primary Domain Controller (DC01) and a Read-Only Domain Controller (RODC01). You're00