YPYogesh Peelainexploitnotes.hashnode.dev·2d ago · 21 min readHackTheBox: LustrousTwo WriteupSummary This box is a Windows Active Directory domain controller that only accepts Kerberos authentication (NTLM is disabled). Initial access starts with anonymous FTP exposing a valid username list, 00