Posts tagged with "Active_Directory" | 0xfr3nzy

HTB: Puppy (Windows/Medium)

Puppy is another amazing assumed breach active directory box.

0 0xfr3nzy
September 28, 2025
6 min read

HackTheBox Medium Active_Directory bloodhound keepass
HTB: Fluffy (Windows/Easy)

Fluffy is an easy Windows machine where initial credentials and CVE-2025-24071 lead to further user access, Active Directory enumeration, and ultimately Administrator compromise.

0 0xfr3nzy
September 20, 2025
7 min read

Windows easy Active_Directory SMB phishing CVE-2025-24071 bloodhound certipy_ad shadow_credentials certificates ADCS ESC16 certipy
HTB X Vulnlab: Shibuya (Windows/HARD)

Shibuya is a hard Windows machine that requires extensive enumeration across multiple services and accounts. The attack chain involves exploiting exposed protocols, credential discovery, and lateral movement. Privilege escalation is achieved through abusing Active Directory Certificate Services.

0 0xfr3nzy
August 5, 2025
13 min read

HackTheBox Windows Active_Directory hard kerbrute ADCS Cross-Session-Relay ESC1 Defender