Vulnlab | Retro - Password Spraying, Pre-Created Computer Accounts & ADCS // by r0BIT

This video by r0BIT (@0xr0BIT) is a walkthrough on Retro, a vulnerable machine on vulnlab.com. It involves Password Spraying, Pre-Created Computer Accounts & an ADCS Attack. [ Timestamps ] 00:00 - Intro & General Enumeration 03:17 - Enumerate SMB Share 06:15 - Grabbing Domain Users 07:58 - Brute-Forcing Domain Logins 10:54 - ADCS Enumeration 15:30 - Fail to Request the Certificate 16:22 - Enumerate Machine Account Quota 17:45 - More SMB Enumeration 19:12 - Brief Intro to Pre2K 21:30 - Obtaining a Machine Account TGT 24:45 - Requesting a certificate 25:35 - Certipy being Certipy 26:19 - Obtaining DA NTLM Hash 27:11 - Compromise [ Pentesting & Red Teaming Labs ] • https://vulnlab.com [ Discord ] •   / discord   [ Desktop ] • https://github.com/xct/kali-cleanhttps://www.yuumeiart.com/ [ About ] • https://vulndev.io •   / xct_de   • https://github.com/xct This is purely educational content - all practical work is done in environments that allow and encourage offensive security training.