We come upon a website that lists some fictional firm employees’ entire names. We create some usernames using these names and use a method known as AS-REP Roasting to obtain a password hash. We can gain initial access to the server using this hash, and we can see that the username j.rock belongs to the Server Operators group. This enables us to launch a service that can carry out any custom command we want. Using this, we can log in as the system user and have full access to the computer. This was part of TryHackMe Services

Windows Active Directory Penetration Testing Study Notes

Room Answers

What is the user flag?

What is the Administrator flag?

Video Walkthrough

CTF Writeups, TryHackMe Services, TryHackMe Walkthrough

Show Comments

The MasterMinds Notes

About the Author

Mastermind Study Notes is a group of talented authors and writers who are experienced and well-versed across different fields. The group is led by, Motasem Hamdan, who is a Cybersecurity content creator and YouTuber.

View Articles

Active Directory Penetration Testing | TryHackMe Services

Leave a Reply Cancel reply

The MasterMinds Notes

About the Author

Other stories

Understanding The Bypass Of File Upload Extension Filters P10 | TryHackMe Opacity

Security Management Concepts Explained | TryHackMe

Press ESC to close

Active Directory Penetration Testing | TryHackMe Services

Leave a Reply Cancel reply

The MasterMinds Notes

About the Author

Share Article:

You might also like

Web Application Basics | TryHackMe Walkthrough

HackTheBox Sherlock: Meerkat Writeup and Walkthrough

LLM & AI Hacking: How AI is Being Exploited by Hackers | TryHackMe EvilGPT 1 & 2

Other stories

Understanding The Bypass Of File Upload Extension Filters P10 | TryHackMe Opacity

Security Management Concepts Explained | TryHackMe