December 8, 2023 | 23:42
HackTheBox - Active
Active from HackTheBox is an easy Windows box, in which we first find AD credentials in Group Policy Preferences and subsequently do a kerberoasting attack to get domain administrator.
Port Scanning The open TCP ports indicate that we’re dealing with an AD domain controller running Windows Server 2008 R2:
PORT STATE SERVICE VERSION 53/tcp open domain Microsoft DNS 6.1.7601 (1DB15D39) (Windows Server 2008 R2 SP1) | dns-nsid: |_ bind.version: Microsoft DNS 6.
Read more