HackTheBox - Administrator

Name: HackTheBox - Administrator
Uploaded: 2025-04-19T15:00:29Z
Channel: IppSec
Description: 00:00 - Introduction, assumed breach box 00:58 - Start of nmap 03:00 - Checking out what the credentials we are given go to, see WinRM but it doesn't gi...

IppSec · Beginner ·🔐 Cybersecurity ·11mo ago

00:00 - Introduction, assumed breach box 00:58 - Start of nmap 03:00 - Checking out what the credentials we are given go to, see WinRM but it doesn't give us much 06:50 - Running python bloodhound as olivia 09:45 - Looking at the json output manually to discover non-default groups 14:50 - Examining Olivia's outbound controls to see there is a chain to Benjamin, who has FTP Access 18:00 - Using Net RPC to change Michael and Benjamin's password 20:00 - Downloading the Password Safe database off the FTP Server, then cracking it 24:20 - Extracting the passwords from the password safe and then spra…

Watch on YouTube ↗ (saves to browser)

Chapters (12)

Introduction, assumed breach box

0:58 Start of nmap

3:00 Checking out what the credentials we are given go to, see WinRM but it doesn't

6:50 Running python bloodhound as olivia

9:45 Looking at the json output manually to discover non-default groups

14:50 Examining Olivia's outbound controls to see there is a chain to Benjamin, who

18:00 Using Net RPC to change Michael and Benjamin's password

20:00 Downloading the Password Safe database off the FTP Server, then cracking it

24:20 Extracting the passwords from the password safe and then spraying to find Emil

26:15 Going back to Bloodhound, discovering Emily has GenericWrite over Ethan, who c

28:25 Running TargetedKerberoast to take advantage over GenericWrite and make Ethan'

30:15 Running SecretsDump then talking about other flags like PasswordHistory

Playlist

Uploads from IppSec · IppSec · 0 of 60

← Previous Next →

HackTheBox - Administrator

Chapters (12)

Playlist

Lesson complete!