HackTheBox Support Walkthrough | Mono EXE, LDAP info, RBCD, Pass The Ticket

In this video, we walk through the Support machine on HackTheBox, chaining multiple Active Directory techniques to escalate from initial access to Domain Admin. What you’ll learn: Running Windows .exe tools on Linux with Mono (UserInfo.exe) Gathering LDAP information and credentials Abusing AddComputer.py for machine account creation Exploiting Resource-Based Constrained Delegation (RBCD) with rbcd.py Performing Pass The Ticket (PtT) with getST.py Gaining a DA shell using PsExec.py 📂 Scripts, and Commands: https://strikoder.com/writeups/support 🏠 Room Link: https://hackthebox.com/machines/support -------- ⏱️ Timestamps: 00:00 – Intro & Target Overview 01:17 – Enumeration (No-Auth: SMB, LDAP, AS-REP Roasting) 14:10 – Running EXE with Mono on Linux (UserInfo.exe) 16:53 – Capturing Cleartext Creds (Wireshark) 21:37 – Authenticated Enumeration (Kerberoasting + LDAP) 27:20 – Domain Enumeration (BloodHound) 35:18 – Exploitation (GenericAll, AddComputer, RBCD, Pass-the-Ticket) 46:04 – Wrap-Up & Explanation -------- Follow me for more real-world hacking walkthroughs, live streams, and cert prep content 👇 💻 Labs GitHub: https://github.com/strikoder 🎥 Streams & Short Content Twitch:   / strikoder   Instagram:   / strikoder   TikTok:   / strikoder   💬 Community & Discussions Discord Server:   / discord   X (Twitter): https://x.com/Strikoder 📨 Official Contact LinkedIn:   / strikoder   Email: [email protected] More videos coming soon on PNPT, and OSCP prep. Stay tuned, and thanks for the support! #RBCD #LDAP #PassTheTicket #Mono #CyberSecurity #support #activedirectory #oscp #hackthebox #activedirectory #windows #ethicalhacking #cybersecurity #pentesting #ctf #infosec #enumeration #privilegeescalation #windowshacking #networksecurity #bugbounty #RedTeam #capturetheflag #pt1 #tryhackme #portswigger #portswiggeracademy #cyberseclabs #hackermindset #terminal #strikoder