Active Directory

• Apr 25, 2025 Jab HTB Walkthrough: XMPP, DCOM, and OpenFire Exploitation
• Apr 24, 2025 Understanding PowerShell Download Cradles: A Deep Dive
• Apr 22, 2025 Administrator HTB Walkthrough: DACLs, ACL Abuse, and AS-REPRoasting
• Jan 14, 2025 EscapeTwo HTB Walkthrough: ESC4 Certificate Abuse and Shadow Credentials Attack
• Dec 24, 2024 Love HTB Walkthrough: SSRF, File Upload, and AlwaysInstallElevated Exploitation
• Nov 15, 2024 Forest HTB Walkthrough: Active Directory, ASREPRoasting, and DCSync Exploitation
• Nov 15, 2024 Understanding AS-REP Roasting Attacks: A Deep Dive
• Nov 13, 2024 LDAPire: Advanced Active Directory Enumeration Tool
• Nov 11, 2024 Timelapse HTB Walkthrough: Active Directory, LAPS, and Certificate-Based Authentication
• Nov 6, 2024 Certified HTB Walkthrough: Shadow Credentials, ESC9, and Certificate Abuse
• Nov 5, 2024 Understanding CVE-2023-28252: Deep Dive into the CLFS Privilege Escalation Vulnerability
• Nov 5, 2024 Understanding CVE-2023-38146: Deep Dive into the ThemeBleed Vulnerability
• Nov 3, 2024 Sauna HTB Walkthrough: Active Directory, Kerberoasting, and PrintNightmare Exploitation
• Nov 2, 2024 Active HTB Walkthrough: GPP, Kerberoasting, and Golden Ticket Attacks
• Nov 1, 2024 Cicada HTB Walkthrough: Active Directory Enumeration and SeBackupPrivilege Exploitation
• Oct 31, 2024 Authority HTB Walkthrough: Certificate Abuse, PKINIT, and RBCD Attacks
• Oct 21, 2024 Resolute HTB Walkthrough: Active Directory, NoPac, and DCSync Exploitation
• Oct 21, 2024 Understanding the NoPac Exploit: A Deep Dive into CVE-2021-42278 and CVE-2021-42287
• Oct 20, 2024 Understanding SeLoadDriverPrivilege Escalation: A Deep Dive
• Oct 18, 2024 Fuse HTB Walkthrough: Active Directory, SeLoadDriverPrivilege, and Capcom Exploitation
• Oct 17, 2024 BloodServer: A Secure File Transfer Tool for Penetration Testing
• Oct 16, 2024 Attacking LDAP: Deep Dive & Cheatsheet
• Oct 16, 2024 Cascade HTB Walkthrough: AD Recycle Bin, VNC, and Ansible Vault Exploitation
• Oct 14, 2024 Monteverde HTB Walkthrough: Azure AD Connect, SQL Server, and Credential Extraction
• Oct 14, 2024 Understanding Azure AD Connect Exploitation & Privilege Escalation
• Oct 13, 2024 Outdated HTB Walkthrough: Active Directory, WSUS, and Follina Exploitation
• Oct 11, 2024 Understanding the Shadow Credentials Attack Vector
• Oct 5, 2024 Escape HTB Walkthrough: Certificate Template Abuse and MSSQL Exploitation
• Sep 29, 2024 Intelligence HTB Walkthrough: Active Directory, DNS, and Kerberos Constrained Delegation
• Sep 12, 2024 Access HTB Walkthrough: PST Files, LNK Exploitation, and Stored Credentials
• Sep 9, 2024 Remote HTB Walkthrough: Active Directory, Umbraco, and SeImpersonatePrivilege Exploitation
• Sep 2, 2024 About Bloodstiller: Ethical Hacker & Active Directory Security Specialist