Vulnlab | Retro - Password Spraying, Pre-Created Computer Accounts & ADCS // by r0BIT
This video by r0BIT (@0xr0BIT) is a walkthrough on Retro, a vulnerable machine on vulnlab.com. It involves Password Spraying, Pre-Created Computer Accounts & an ADCS Attack. [ Timestamps ] 00:00 - Intro & General Enumeration 03:17 - Enumerate SMB Share 06:15 - Grabbing Domain Users 07:58 - Brute-Forcing Domain Logins 10:54 - ADCS Enumeration 15:30 - Fail to Request the Certificate 16:22 - Enumerate Machine Account Quota 17:45 - More SMB Enumeration 19:12 - Brief Intro to Pre2K 21:30 - Obtaining a Machine Account TGT 24:45 - Requesting a certificate 25:35 - Certipy being Certipy 26:19 - Obtaining DA NTLM Hash 27:11 - Compromise [ Pentesting & Red Teaming Labs ] • https://vulnlab.com [ Discord ] • / discord [ Desktop ] • https://github.com/xct/kali-clean • https://www.yuumeiart.com/ [ About ] • https://vulndev.io • / xct_de • https://github.com/xct This is purely educational content - all practical work is done in environments that allow and encourage offensive security training.

Vulnlab | Baby2 - Logon Scripts, WriteDACL, Shadow Credentials & GPOs

Network Ports Explained 🔌 TCP, UDP, Ranges & Scanning

Pgp keys a basic walkthrough for creating and using them. (Part 1)

Cybersecurity Architecture: Who Are You? Identity and Access Management

HackTheBox - Overwatch

Mythic C2 - Installation | Mythic | Command and Control Series

Vulnlab | Klendathu - Auth Coercion, Mixed Kerberos Stacks & Domain Backup Keys // by snowscan

Vulnlab | Wutai: Account Operators, Trust Enumeration & Password Reuse

HackTheBox - Tombwatcher

Using NMAP Like a Red Team Operator (OPSEC Matters!)

The World's Most Important Machine

HackTheBox - Signed

How Rockstar fit an entire city into PlayStation 2 memory

HackTheBox - TheFrizz

Cybersecurity Architecture: Five Principles to Follow (and One to Avoid)

Before You Trash Your Old PC Power Supply... Build This!

Adobe Is Completely F*cked.

Real-Time WebSockets Course | Build a Live Sports Dashboard with Node.js & PostgreSQL

Vulnlab | Reflection - MSSQL, Relaying, LAPS & ACL Misconfigurations

