Pentesting Active Directory with BloodHound

Table of Contents

Pentesting Windows Active Directory with BloodHound | HackTheBox Forest | CREST CRT Track

We covered HTB Forest as part of CREST CRT Track where we performed AS-REP ROASTING and DCsync on the machine running Windows server active directory. There was no online application to serve as an attack surface, it was a special box. We had to take advantage of a null session to obtain a user’s hash, which we then applied to the box to obtain a shell. We then use that shell to run Bloodhound to find a way to elevate our user account privileges, use that account to dump secrets, and finally log in to the box as the administrator using those secrets.

Get OSCP Certificate Notes

Video Walkthrough

Active Directory, Active Directory Penetration Testing, AS-REP ROASTING, BloodHound, CTF Writeups, DCsync Attack, HackTheBox, windows privilege escalation

Show Comments

MasterMind Study Notes

About the Author

Mastermind Study Notes is a group of talented authors and writers who are experienced and well-versed across different fields. The group is led by, Motasem Hamdan, who is a Cybersecurity content creator and YouTuber.

View Articles

HackTheBox Forest Walkthrough

Pentesting Windows Active Directory with BloodHound | HackTheBox Forest | CREST CRT Track

Video Walkthrough

Leave a Reply Cancel reply

MasterMind Study Notes

About the Author

Press ESC to close

HackTheBox Forest Walkthrough

Pentesting Windows Active Directory with BloodHound | HackTheBox Forest | CREST CRT Track

Video Walkthrough

Leave a Reply Cancel reply

MasterMind Study Notes

About the Author

Share Article:

You might also like

HackTheBox SPG Challenge Writeup | Cryptography CTF Challenges

Blue Team SOC Real World Case Studies | Complete Walkthrough | TryHackMe Boogeyman 1,2,3

Auditing Explained in IT & Information Security