We covered a machine with a printer exposed to the public via port 80. The printer contained a form that sends an LDAP request internally. We were able to hijack the LDAP packets and redirect it to our machine where we intercepted a pair of credentials which landed us a shell on the machine. Privilege escalation was accomplished on the windows active directory machine through the server operators group and by exploiting an existing service and changing its binary path to an executable we control. This was part of intro to printer exploitation HackTheBox Return.

Video Walkthrough

Active Directory Penetration Testing, CTF Writeups, HackTheBox, HackTheBox Return, Printer Exploitation

Show Comments

Motasem

About the Author

I create cybersecurity notes, digital marketing notes and online courses. I also provide digital marketing consulting including but not limited to SEO, Google & Meta ads and CRM administration.

View Articles

Printer and Active Directory Exploitation | HackTheBox Return

Leave a Reply Cancel reply

Motasem

About the Author

Other stories

Operating System Cyber Attacks and Security | TryHackMe Introduction to Cybersecurity

Creating Microsoft Office and HTML Payloads | TryHackMe Weaponization

Press ESC to close

Printer and Active Directory Exploitation | HackTheBox Return

Leave a Reply Cancel reply

Motasem

About the Author

Share Article:

Other stories

Operating System Cyber Attacks and Security | TryHackMe Introduction to Cybersecurity

Creating Microsoft Office and HTML Payloads | TryHackMe Weaponization