We come upon a website that lists some fictional firm employees’ entire names. We create some usernames using these names and use a method known as AS-REP Roasting to obtain a password hash. We can gain initial access to the server using this hash, and we can see that the username j.rock belongs to the Server Operators group. This enables us to launch a service that can carry out any custom command we want. Using this, we can log in as the system user and have full access to the computer. This was part of TryHackMe Services

Get OSCP Notes

Room Answers

What is the user flag?

What is the Administrator flag?

Video Walkthrough

About the Author

Cybersecurity Trainer MS in Cybersecurity Expertise in Healthcare and Finance Industries Penetration tester and compliance auditor

View Articles