Category: Infrastructure

Exceeding a network switches CAM table to intercept traffic.

Relaying WebClient Connections to LDAP become a local administrator.

Pentesting SCCM.

Identifying users logged into a remote host.

Compromising open X Window System servers.

Encoding command line arguments to evade detection.

Maintaining access to an Active Directory environment.

Generating forged Kerberos gold, silver and diamond tickets.

Changing default security descriptor properties to escalate from a child to parent domain.

Compromising MSSQL databases, and escalating privileges.

Extracting gMSA service accounts from child domains.

Modifying SID History values to compromise parent domains.