Tag: evil-winrm

• Timelapse – HackTheBox

  Timelapse was a relatively easy ‘Easy’ machine that required exploiting misconfigured SMB that led to a shell as a normal user where a service account password was discovered in powershell history. That account was configured to be allowed to read the LAPS password, which let us get administrative access on the machine. Scanning From the…

  Captain Nemo

  August 20, 2022

  HackTheBox

  Active Directory, evil-winrm, LAPS, PFX, Powershell, SMB